We're updating the issue view to help you get more done. 

Admins should be able to configure cryptographical protocols & cypher suites

Description

The cryptographical protocols & cypher suites that we allow is now based on a hardcoded list. Administrative users should be able to configure this instead.

Environment

None

Acceptance Test - Entry

None

Activity

Show:
Guus der Kinderen
January 5, 2016, 11:15 AM

Functionality has been added to the admin console. Further i18n is needed.

wroot
January 7, 2016, 4:41 AM

Is this already applied to the source and if so, where exactly in Admin Console are these settings?

Guus der Kinderen
January 7, 2016, 7:08 AM

Yes, it's already in the source.

On the admin panel, open one of the pages that configures connections (for example Server -> Server Settings -> Client Connections). Per port, there now is an "advanced settings" link. Click on that, scroll down (certificate settings won't be shown unless you have STARTTLS disabled in a plain-content connection. In that case, toggling the STARTTLS setting will make more options appear).

Guus der Kinderen
January 7, 2016, 10:09 PM

Assignee

Guus der Kinderen

Reporter

Guus der Kinderen

Labels

None

Expected Effort

None

Ignite Forum URL

None

Components

Fix versions

Priority

Minor
Configure