How To Disable TLS 1.0 and 1.1 for Apache

How To Disable TLS 1.0 and 1.1 for Apache

Please find the below steps to disable TLS 1.0 and 1.1 for the Apache webserver.
 
 Note: Please make sure that you have a valid SSL certificate.

 

  • Please login to the eMAM upload manager installed server (web or app ), and find the server.xml file from the following location,
     
         If upload manager inside ingest folder: C:\Program Files\Empress Media\eMAM Ingest Manager\eMAMUploadManager\conf\server.xml
     
         If upload manager inside gateway: C:\Program Files\Empress Media\eMAM Gateway\eMAMUploadManager\conf\server.xml
  • Edit the server.xml file and find the following tag,
     
                                            <Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"

             maxThreads="150" SSLEnabled="true" scheme="https" secure="true"

          clientAuth="false" SSLProtocol="TLS" keystoreFile="C:\Program Files\Empress Media\eMAM Ingest Manager\eMAMUploadManager\eMAMUploadManager.jks"

                    keystorePass="******" SSLVerifyClient="optional"  />
 

  • Find the SSL protocol tag and Replace TLS with TLS v1.2,
     
              SSLProtocol= “Please mention the TLS version here
     
         The edited XML file will look like below,
     
  • To enable TLS 1.0,TLS 1.1 and TLS 1.2,
          
           Find the SSLProtocol tag and replace TLS with     TLSv1+TLSv1.1+TLSv1.2,
     
       SSLProtocol=“TLSv1+TLSv1.1+TLSv1.2”
  • Please save the edited server.xml file and restart the eMAM upload manager service to reflect the changes.
     

 


    • Related Articles

    • How to create a virtual directory inside Apache Tomcat

      To employ Apache Tomcat instead of IIS to play the preview of assets in eMAM, we need to make necessary changes in configurations in two locations as explained below. 1. Adding Virtual directory Open C:\Program Files\Empress Media\eMAM Ingest ...

    • How to convert an IIS SSL certificate for Apache?

      How to convert an IIS SSL certificate for Apache 1. We need to export the certificate as PFX with the private key. Please follow the below steps: Open Microsoft Management Console by putting the following command in RUN. "MMC.EXE" Click on File icon ...

    • Apache Tomcat version upgrade

      STOP the eMAMUploadManager service 2. Backup the eMAMUploadManager folder 3. Download the Apache Tomcat latest version from the below link and extract the downloaded zip https://archive.apache.org/dist/tomcat/tomcat-9/ 4. Once extracted, you will be ...

    • How to make TLS 1.2 compatible between eMAM and AWS?

      AWS has implemented a TLS configuration update, requiring all AWS API endpoints to support a minimum of TLS 1.2 for secure connections. To learn more, please refer to this -https://aws.amazon.com/blogs/security/tls-1-2-required-for-aws-endpoints ...

    • Apache Log4j Vulnerability (CVE-2021-44228)

      Background: The Apache Log4j utility is a commonly used component for logging requests. On December 9, 2021, a vulnerability was reported that could allow a system running Apache Log4j version 2.14.1 or below to be compromised and allow an attacker ...