CryptoProtocolVersion
- Last Updated: November 4, 2015
- 1 minute read
- DataDirect Connectors
- JDBC
- IBM Db2 5.1
- MySQL 5.1
- Progress OpenEdge 5.1
- SAP Sybase 5.1
- Documentation
Purpose
Specifies a cryptographic protocol or comma-separated list of cryptographic protocols that can be used when TLS/SSL is enabled using the EncryptionMethod connection property.
Valid Values
cryptographic_protocol
[[,
cryptographic_protocol
]...]
where:
- cryptographic_protocol
- is one of the following cryptographic protocols:
TLSv1.2|TLSv1.1|TLSv1|SSLv3|SSLv2
CAUTION: To
avoid vulnerabilities associated with SSLv3 and SSLv2, good security practices
recommend using TLSv1 or higher.
Example
If your server supports TLSv1.1 and TLSv1.2, you can
specify acceptable cryptographic protocols with the following key-value
pair:
CryptoProtocolVersion=TLSv1.1,TLSv1.2Notes
- When multiple protocols are specified, the driver uses the highest version supported by the server. If none of the specified protocols are supported by the server, the connection fails and the driver returns an error.
- When no value has been specified for CryptoProtocolVersion, the driver establishes an SSL connection using the default. If the default is not supported by the server, the connection fails and the driver returns an error.
Default
TLSv1
Data Type
String