Notifications

145 views

Description

If you are doing things like HTTPs requests from the MID server you may encounter SSL issues. This following should help to troubleshoot this. 

Procedure

1) Turn on ssl debug on MID server JVM:
There are 2 properties: -Djavax.net.debug=ssl or -Djavax.net.debug=all (fine grained and highly verbose)
Go to mid server wrapper-override.conf and add customer parameters as needed, for example
wrapper.java.additional.3=-Djavax.net.debug

The JMV debugging messages will go to the wrapper log.
2) Turn on the glide http log:
Add this property to glide.properties on MID
glide.http.log_debug=true


3) There is another glide security property that you can add to glide.properties if needed
glide.outbound.sslv3.disabled

After finding the root cause you can change the JVM security configuration by following JAVA/ORACLE guide lines.

Here are some useful resources for SSL/TLS debugging:

https://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/ReadDebug.html
https://www.java.com/en/configure_crypto.html
https://security.stackexchange.com/questions/120347/how-to-disable-weak-cipher-suits-in-java-application-server-for-ssl
https://www.owasp.org/index.php/Testing_for_Weak_SSL/TLS_Ciphers,_Insufficient_Transport_Layer_Protection_(OTG-CRYPST-001)

https://hi.service-now.com/nav_to.do?uri=%2Fkb_view.do%3Fsysparm_article%3DKB0621173
https://hi.service-now.com/kb_view.do?sysparm_article=KB0597327

Applicable Versions

All

Article Information

Last Updated:2019-05-21 11:54:27
Published:2019-03-18