Cipher suite in MQ plug-in SSL configuration when using CCDT
Article ID: KB0081843
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks Plug-in for IBM MQ | 7.6, 8.5 |
Description
When using a client channel definition table (CCDT) with TLS enabled, the MQ plug-in will extract the cipher for the channel from the configured CCDT file and will use that regardless of the one specified in the connection config. It will work fine on that cipher from CCDT given all usual conditions are met, for example, supported MQ client and sever versions with latest fix pack, com.ibm.mq.cfg.useIBMCipherMappings property set to false on Non-IBM JRE and unlimited JCE installed.
Issue/Introduction
How the MQ plug-in chooses the cipher suite in MQ plug-in SSL configuration when using CCDT.
Additional Information
https://www.ibm.com/support/knowledgecenter/en/SSFKSJ_8.0.0/com.ibm.mq.sec.doc/q010070_.htm
https://www.ibm.com/support/knowledgecenter/en/SSFKSJ_8.0.0/com.ibm.mq.dev.doc/q030810_.htm
https://www.ibm.com/support/knowledgecenter/en/SSFKSJ_8.0.0/com.ibm.mq.dev.doc/q030810_.htm
Feedback
Yes
No
Powered by
