How to enable SSL GCM ciphers to be sent by Rule Designer v8.7.1.1?

After upgrade of the ODM Decision Center app server to TLS v1.2 , RD v8711 gets handshake error when connecting to DC.
DC secure port is setup for TLSv1.2, supporting only the
SSL_ECDHE_RSA_WITH_AES_128_GCM_SHA256 or
SSL_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ciphers.

We did intensive analysis with a hand-written test program and tracked the issue down to GCM cipher suites.
All other settings seem to be correct, which was proved when we temporarily added a CBC cipher (TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) to the list of supported ciphers on the server.
Then RD could securely connect to DC and their simple test program also didn’t get the handshake_exception.

How can we get ODM 8.7.1 Rule Designer (with Java 1.7) to use a certain GCM cipher when connecting to DC?

Related:

Leave a Reply