How to enable TLSv1.3 to Filr version 23.4

Dear all,

can anyone tell how to I enable TLSv1.3 to Filr 23.4?

BR

Martin

  • 0  

    I am checking on this.

  • Suggested Answer

    0   in reply to   

    Sorry for the delay on this.  I have not had a chance to test this in my lab and engineering did not test this using a public certificate.  Backup or take a snapshot before trying the following.

    1. SSH to the Filr 23.4 server
    2. Access File /opt/novell/filr/apache-tomcat/conf/server.xml
    3. Search for line '<Connector SSLCertificateChainFile' & comment the whole line <! -- -->
    4. Replace it with following line
      <Connector SSLCertificateChainFile="/vastorage/conf/certs/vachain.crt"
                 SSLCertificateFile="/vastorage/conf/certs/vaserver.crt"
                 SSLCertificateKeyFile="/vastorage/conf/certs/vaserver.key"
                 SSLCipherSuite="TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256"
                 SSLEnabled="true"
                 SSLPassword="changeit"
                 SSLVerifyClient="none"
                 SSLProtocol="TLSv1.3"
                 URIEncoding="UTF-8"
                 maxParameterCount="1000"
                 maxThreads="250"
                 port="8443"
                 protocol="HTTP/1.1"
                 scheme="https"
                 secure="true"
                 server="Filr"
                 sslEnabledProtocols="TLSv1.3">
      </Connector>
    5.  Restart the Filr service

    Test to see if you can access the 8443 page.  If yes, you can validate TLS 1.3 access using following command:

    openssl s_client -connect FILRSERVERNAME:8443 -tls1_3

    I will try to test this in my lab as well.