Can I exclude TLSv1.1 in addition to the protocols listed in the guide?

Document ID : KB000016291
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

Can I exclude TLSv1.1 in addition to the protocols listed in the guide?

Environment:
CA Performance Management 2.7 and later
Answer:

In the InstallDirectory/PerformanceCenter/jetty/etc/jetty-ssl-context.xml  on CA Performance Center,
Add TLSv1.1 as in:

<Set name="ExcludeProtocols">
    <Array type="java.lang.String">
        <Item>TLSv1.1</Item>
        <Item>TLSv1</Item>
        <Item>SSLv3</Item>
        <Item>SSLv2</Item>
       <Item>SSLv2Hello</Item>
    </Array>
</Set>

Additional Information:

https://docops.ca.com/ca-performance-management/3-2/en/administrating/single-sign-on/set-up-https-for-ca-single-sign-on/configure-performance-center-to-use-https