The ibmvm_rest probe encountered improved security of virtualHMC and cannot establish an encrypted connection.
The trouble is that java7 can't handle 2048bit public key along Diffie–Hellman key exchange.
Should we use JRE 8 as it supports TLS 1.1 and TLS 1.2?
The idea is to install java_jre 1.8 and put into robot.cfg NIM_JRE_HOME_1_8 = jre/jre8u102 and into controller.cfg I am successfully breaking requirements by running probe on UIM 8.47
The java 1.7 and higher is noted in requirements....
openssl client test output:
Cipher is DHE-RSA-AES256-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Protocol : TLSv1.2
Cipher : DHE-RSA-AES256-SHA256
JRE 7 does not support TLS 1.1 and TLS 1.2 out of the box.
JRE 7 also may have some limitations on key length: https://www.java.com/en/configure_crypto.html