Difference between revisions of "SSL"

From Dogtag
Jump to: navigation, search
(SSL range ciphers)
m (Replaced content with "This page has been moved to https://github.com/dogtagpki/pki/wiki/SSL.")
 
(48 intermediate revisions by 2 users not shown)
Line 1: Line 1:
= Overview =
+
This page has been moved to https://github.com/dogtagpki/pki/wiki/SSL.
 
 
This page describes the SSL configuration used by PKI. The SSL configuration is stored in /var/lib/pki/<font color="red">pki-tomcat</font>/conf/server.xml as part of [[TomcatJSS]] configuration.
 
 
 
= Default SSL Configuration =
 
 
 
By default PKI will use the following SSL configuration.
 
 
 
== General configuration ==
 
 
 
* Strict ciphers: true
 
* Client certificate authentication: want
 
* server cert nickname file: /var/lib/pki/pki-tomcat/conf/serverCertNick.conf
 
* password file: /var/lib/pki/pki-tomcat/conf/password.conf
 
* password class: org.apache.tomcat.util.net.jss.PlainPasswordFile
 
* NSS database: /var/lib/pki/pki-tomcat/alias
 
 
 
== OCSP ==
 
 
 
* OCSP: enabled
 
* OCSP responder URL: http://$HOSTNAME:9080/ca/ocsp
 
* OCSP responder certificate: ocspSigningCert cert-pki-ca
 
* Cache size: 1000
 
* Minimum cache entry duration: 60 seconds
 
* Maximum cache entry duration: 120 seconds
 
* Timeout: 10 seconds
 
 
 
== SSL options ==
 
 
 
* SSL2: disabled
 
* SSL3: disabled
 
* TLS: enabled
 
 
 
Note: If the SSL range ciphers parameters are defined, the SSL options parameters will be ignored.
 
 
 
== SSL2 ciphers ==
 
 
 
Disabled:
 
 
 
* SSL2_RC4_128_WITH_MD5
 
* SSL2_RC4_128_EXPORT40_WITH_MD5
 
* SSL2_RC2_128_CBC_WITH_MD5
 
* SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
 
* SSL2_DES_64_CBC_WITH_MD5
 
* SSL2_DES_192_EDE3_CBC_WITH_MD5
 
 
 
Enabled: none
 
 
 
== SSL3 ciphers ==
 
 
 
Disabled:
 
 
 
* SSL3_FORTEZZA_DMS_WITH_NULL_SHA
 
* SSL3_FORTEZZA_DMS_WITH_RC4_128_SHA
 
* SSL3_RSA_EXPORT_WITH_RC4_40_MD5
 
* SSL3_RSA_WITH_DES_CBC_SHA
 
* SSL3_RSA_EXPORT_WITH_RC2_CBC_40_MD5
 
* SSL3_FORTEZZA_DMS_WITH_FORTEZZA_CBC_SHA
 
* SSL_RSA_FIPS_WITH_DES_CBC_SHA
 
* SSL3_RSA_WITH_NULL_MD5
 
* TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
 
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
 
 
 
Enabled:
 
 
 
* SSL3_RSA_WITH_RC4_128_SHA
 
* SSL3_RSA_WITH_3DES_EDE_CBC_SHA
 
* SSL_RSA_FIPS_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
 
 
 
== TLS ciphers ==
 
 
 
Disabled:
 
 
 
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
 
 
 
Enabled:
 
 
 
* TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
 
* TLS_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_RSA_WITH_AES_128_CBC_SHA
 
* TLS_RSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
 
* TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_128_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_256_CBC_SHA
 
* TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA
 
 
 
== SSL version range for stream protocols ==
 
 
 
Minimum: tls1_0
 
 
 
Maximum: tls1_2
 
 
 
Valid values: ssl3, tls1_0, tls1_1, tls1_2
 
 
 
== SSL version range for datagram protocols ==
 
 
 
Minimum: tls1_1
 
 
 
Maximum: tls1_2
 
 
 
Valid values: tls1_1, tls1_2
 
 
 
== SSL range ciphers ==
 
 
 
This list defines the SSL ciphers for the above SSL version ranges. This parameter overrides the SSL options parameters above for ECC ciphers.
 
 
 
Disabled:
 
 
 
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
 
* TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
 
* TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_128_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_256_CBC_SHA
 
* TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
 
* TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
 
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
 
* TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
 
* TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_RSA_WITH_AES_256_CBC_SHA256
 
* TLS_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_RSA_WITH_3DES_EDE_CBC_SHA (enabled -> disabled per https://pagure.io/dogtagpki/issue/2821)
 
 
 
Enabled:
 
 
 
* TLS_RSA_WITH_AES_128_CBC_SHA
 
* TLS_RSA_WITH_AES_256_CBC_SHA
 
<br>
 
Similarly, the following list defines the SSL ciphers for the above SSL version ranges for non-ECC ciphers.
 
 
 
Disabled:
 
 
 
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
 
* TLS_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_RSA_WITH_AES_128_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_128_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_256_CBC_SHA
 
* TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
 
* TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
 
* TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
 
 
 
Enabled:
 
 
 
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
 
* TLS_RSA_WITH_AES_256_CBC_SHA
 
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
 
* TLS_RSA_WITH_AES_256_CBC_SHA256
 
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
 
* TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
 
 
 
= FIPS SSL Configuration =
 
 
 
In FIPS mode, certain HSMs may require enabling certain SSL ciphers in order to work with PKI CLI and Firefox 34 or older (newer Firefox will not work).
 
 
 
For Thales HSM, enable the following SSL range ciphers for non-ECC ciphers:
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA
 
* TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
 
* TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
 
* TLS_RSA_WITH_AES_128_CBC_SHA256
 
* TLS_RSA_WITH_AES_256_CBC_SHA256
 
 
 
Disable everything else in SSL range ciphers.
 
 
 
The <Connector> element in server.xml will look like the following:
 
 
 
<pre>
 
<Connector
 
    ...
 
    sslRangeCiphers="
 
TLS_DHE_RSA_WITH_AES_128_CBC_SHA,
 
TLS_DHE_RSA_WITH_AES_256_CBC_SHA,
 
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,
 
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256,
 
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,
 
TLS_RSA_WITH_AES_128_CBC_SHA256,
 
TLS_RSA_WITH_AES_256_CBC_SHA256"
 
    .../>
 
</pre>
 
 
 
= Customizing SSL Configuration =
 
 
 
== During Installation ==
 
 
 
During installation the installer will use the default SSL configuration. Under certain circumstances (e.g. in FIPS mode) the default SSL configuration may not work. To customize the SSL configuration during installation use the [[Two-Step Installation]]:
 
 
 
* Prepare a normal deployment configuration.
 
* Add pki_skip_configuration=True to the configuration and run pkispawn.
 
* Customize the SSL parameters as needed in /var/lib/pki/<font color="red">pki-tomcat</font>/conf/server.xml
 
* Replace pki_skip_configuration=True with pki_skip_installation=True and run pkispawn again.
 
 
 
== After Installation ==
 
 
 
After installation the SSL settings can be customized directly in /var/lib/pki/<font color="red">pki-tomcat</font>/conf/server.xml.
 
 
 
= Troubleshooting =
 
 
 
* [[sslscan]]
 
* [[NSS Tools]]
 
 
 
= References =
 
 
 
* [[SSL Protocol]]
 
* [[NSS]]
 
* [[TomcatJSS]]
 
* [[PKI CLI Configuration]]
 
* [[Enabling SSL Connection with Internal Database]]
 
* [[FIPS]]
 
* [https://bugzilla.redhat.com/show_bug.cgi?id=871171 Bug 871171 - Provide Tomcat support for TLS v1.1 and TLS v1.2 (Tomcatjss)]
 
* [https://bugzilla.redhat.com/show_bug.cgi?id=1382066 Bug 1382066 - Problems with FIPS mode]
 
* [https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4 TLS Cipher Suite Registry]
 

Latest revision as of 19:30, 14 September 2023

This page has been moved to https://github.com/dogtagpki/pki/wiki/SSL.

Retrieved from "http://www.dogtagpki.org/index.php?title=SSL&oldid=41915"