TIBCO Data Virtualization (TDV) 8.2 and above is built with Java 11 which defaults to TLS v1.3. This article outlines the steps to configure additional restrictions for SSL protocols.

How to restrict additional SSL protocols in TIBCO Data Virtualization?

All supported Operating Systems

Perform the following steps:
1. Start TDV Server and launch the TDV Studio.

2. From the TDV Studio, open the Administration > Configuration dialog and search for "Disabled Protocols for SSL Connectors”.

3. The default TDV value for “Disabled Protocols for SSL Connectors” is “SSLv2Hello, SSLv2, SSLv3”.

Screenshot of this configuration for reference:


Include the protocols to disable when creating an SSL connector.

Note: The string should be a comma-separated list of protocols and the Other valid values are “TLSv1, TLSv1.1, TLSv1.2, TLSv1.3, DTLSv1.0, DTLSv1.2”.
Click Apply to save the changes. 

4. Restart the TDV Server.
To verify that TDV Server has picked up the additional restricted protocols, after TDV Server restart, the following entry will be shown in cs_server.log file:

 INFO [main] 2021-11-30 08:52:21.467 -0500 CompositeServer - Setting excluded SSL protocols for Jetty HTTPS connector to [SSLv2Hello, SSLv2, SSLv3, TLSv1, TLSv1.1]

In this example, TLSv1 and TLSv1.1. were included as additional restricted SSL protocols.