6.5 Ensure sslProtocol is set to TLS for Secure Connectors (verify sslProtocol is set to TLS)

Information

The sslProtocol setting determines which protocol Tomcat will use to protect traffic. It is recommended that sslProtocol attribute be set to TLS.

Solution

In server.xml, set the sslProtocol attribute to 'TLS' for Connectors having SSLEnabled set to true.

See Also

https://workbench.cisecurity.org/files/266

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Unix

Control ID: f996b0c823ebe6def2f299421bcead86d6b06051a1c26b8bec468adc3651b693