TLS settings for outgoing traffic

Overview

The instruction in this document will describe how to set TLS versions for outgoing traffic using the different HTTP valves.

The changes are made in the following files, in the /bin folder:

/bin/start-PhenixID.sh (Linux)

/bin/*.vmoptions (Windows)

Please make sure to have a recent backup of this file/these files before doing the changes.

Requirements

  • PhenixID Server installed

Setting TLS version(s)

To set your desired version of TLS, use the parameter "-Dhttps.protocols".
Like this example:
-Dhttps.protocols=TLSv1.2,TLSv1.3

A restart of the service is needed for the change to take effect.