ssl
Defines SSL processing parameters.
Superelements
security (sun-acc.xml)
Subelements
none
Attributes
The following table describes attributes for the SSL element.
Table C-146 ssl attributes
|
|
|
|
s1as |
(optional) The nickname of
the server certificate in the certificate database or the PKCS#11 token. In the
certificate, the name format is tokenname:nickname. Including the tokenname: part of the name
in this attribute is optional. |
|
false |
(optional) Determines whether SSL2 is enabled. |
|
none |
(optional) A comma-separated
list of the SSL2 ciphers to be used. Ciphers not explicitly listed will
be disabled for the target, even if those ciphers are available in
the particular cipher suite you are using. If this option is not used,
all supported ciphers are assumed to be enabled. Allowed values are rc4, rc4export,
rc2, rc2export, idea, des, desede3. |
|
true |
(optional) Determines whether SSL3 is enabled. |
|
none |
(optional) A comma-separated
list of the SSL3 and/or TLS ciphers to be used. Ciphers not explicitly
listed will be disabled for the target, even if those ciphers are available
in the particular cipher suite you are using. If this option is not
used, all supported ciphers are assumed to be enabled. Allowed values are SSL_RSA_WITH_RC4_128_MD5,
SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_WITH_NULL_MD5, SSL_RSA_WITH_RC4_128_SHA, SSL_RSA_WITH_NULL_SHA. Values available in previous releases are
supported for backward compatibility. |
|
true |
(optional) Determines whether TLS is enabled. |
|
true |
(optional) Determines whether TLS rollback
is enabled. Enable TLS rollback for Microsoft Internet Explorer 5.0 and 5.5. |
|