1. Inbound Connections commands<\/p>\n
At broker level
\nmqsichangeproperties mwpbroker -b httplistener -o HTTPSConnector -n sslProtocol -v TLS<\/p>\n
At Execution group level
\nmqsichangeproperties mwpbroker -e mwpeg -o HTTPSConnector -n sslProtocol -v TLS<\/p>\n
For TCIPServer
\nmqsichangeproperties mwpbroker -c TCPIPServer -o myTCPIPServerService -n SSLProtocol\u00a0 -v TLS<\/p>\n
For webadmin
\nmqsichangeproperties mwpbroker -b webadmin -o HTTPSConnector -n sslProtocol -v TLS<\/p>\n
Report the properties after modifying the changes,<\/p>\n
At broker level for httplistener
\nmqsireportproperties mwpbroker -b httplistener -o HTTPSConnector\u00a0 -a
\nmqsireportproperties mwpbroker -b httplistener -o AllReportableEntityNames -a
\nmqsireportproperties mwpbroker -b httplistener -o HTTPListener -a<\/p>\n
At EG level
\nmqsireportproperties mwpbroker -e mwpeg -o HTTPSConnector -r<\/p>\n
Below screenshots for reference performed for Broker and EG level,<\/p>\n
![\"IBM](\"http:\/\/www.middlewareprimer.com\/blog\/wp-content\/uploads\/2016\/10\/iibssl1.png\")
<\/p>\n
![\"IBM](\"http:\/\/www.middlewareprimer.com\/blog\/wp-content\/uploads\/2016\/10\/iibssl3.png\")
\n2. If you want to enable TLS protocol, TLSv1.2 then use below command (applies to other set of commands)<\/p>\n
mqsichangeproperties mwpbroker -b httplistener -o HTTPSConnector -n sslProtocol -v TLSv1.2<\/p>\n
![\"IBM](\"http:\/\/www.middlewareprimer.com\/blog\/wp-content\/uploads\/2016\/10\/iibssl2.png\")
<\/p>\n
3. To re-enable SSLv3 protocol, please use below commands.<\/p>\n
mqsichangeproperties mwpbroker -o BrokerRegistry -n allowSSLv3 -v true
\nmqsichangeproperties mwpbroker -e mwpeg -o ComIbmJVMManager -n allowSSLv3 -v true
\nmqsichangeproperties mwpbroker -b httplistener -o HTTPListener -n allowSSLv3 -v true<\/p>\n
![\"IBM](\"http:\/\/www.middlewareprimer.com\/blog\/wp-content\/uploads\/2016\/10\/iibssl4.png\")
<\/p>\n","protected":false},"excerpt":{"rendered":"
IBM Integration Bus v9 enable TLS protocol information provided for reference. As part of recent security testing performed for one of the customer, I have seen several set of links provided for IBM Integration Bus v9 product where different technotes mentioned to disable SSLv3 protocol as it is\u00a0vulnerable to Padding Oracle On Downgraded Legacy Encryption […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21],"tags":[121,146,275,280,281],"class_list":["post-938","post","type-post","status-publish","format-standard","hentry","category-ibm-integration-bus","tag-critical-cannot-make-ssl-connection","tag-iib-v9","tag-sslv3","tag-tls","tag-tlsv1-2"],"_links":{"self":[{"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/posts\/938","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/comments?post=938"}],"version-history":[{"count":4,"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/posts\/938\/revisions"}],"predecessor-version":[{"id":1064,"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/posts\/938\/revisions\/1064"}],"wp:attachment":[{"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/media?parent=938"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/categories?post=938"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.middlewareprimer.com\/blog\/wp-json\/wp\/v2\/tags?post=938"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}