We are running DCRUM 12.4.x and our company is shutting down TLSv1. In DCRUM components CAS, ADS, and CSS, the JDBC connection string is using "jdbc.connectionString=jdbc\:jtds\:sqlserver\://xxxx/yyyy;instance\=zzzz;ssl\=require;useNTLMv2\=true"
The TLSv1.2 is enabled in MSSQL DB side as verified, so if TLSv1 and v1.1 are disabled, does this JDBC connection string still works? Can we specify TLSv1.2 in it? Do we need to upgrade JDBC driver?
Answer by Charles W. ·
I already followed this link to disable other TLS versions other than TLSv1.2. Thanks anyway. In this link, close to very end, "3. Make sure that all DC RUM components connecting to this database are utilizing TLSv1.2.". This actually was my question: how can I make sure all of JDBC connection string are using TLSv1.2?
Answer by Babar Q. ·
Make sure your Windows version supports TLS 1.2 connections.
TLS 1.2 support for MS SQL Server (2008, 2012, and 2014) requires a specific Service Pack version and/or cumulative update patch.
Review the below link for more insight.
As part of security overhaul, my client wants to have a 2-factor authentication in DCRUM. This 2-factor authentication should be valid when accessing CAS, ADS and RUM Console. Is it possible presently ? What are my options ? 1 Answer
Rules for 3 F5's - 3 Tiers - SNAT/NAT 4 Answers
DCRUM 12.4 New Instance Setup 2 Answers