Tech Tip: How to disable weak SSL Ciphers using nhWebProtcocol

Document created by kk_sup Employee on Oct 22, 2014Last modified by SamCreek on Dec 17, 2016
Version 3Show Document
  • View in full screen mode

Adding the -strongCipher flag to the nhWebProtocol command you are using to enable SSL on the eHealth web will change the supported ciphers from:

 

SSLCipherSuite              ALL

 

To:

 

SSLCipherSuite          ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM

Attachments

    Outcomes