This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal


~Kelly Desapulader
Dec 9, 2015, 8:03 PM
15 Posts

Port 2050 using TLS 1.2

  • Category: Security
  • Platform: Windows
  • Release: 9.0.1
  • Role: Administrator
  • Tags:
  • Replies: 2

I am receiving security notifications about TLS 1.2 not being enabled on Port 2050. I am running Domino 9.0.1 FP5 with the latest Java patch that is included in FP5.

It is my understanding that TLS 1.2 is automatically used since FP3 IF3. Does anyone know if something else is required to enable TLS 1.2 over Port 2050.

Thanks.

~Cheryl Opregenoopsi
Feb 9, 2016, 1:02 PM
6 Posts
Port 2050 can do TLS 1.0 only
The connection on port 2050 can only be made on TLS 1.0. The server controller has its own self-signed, MD5 certificate which is limiting the ability to use secure TLS 1.2. MD5 certificates cannot be used on TLS 1.2 connections.

Use OpenSSL to verify the protocol available on the port and to view the server certificate: openssl s_client -connect <host name>:2050

This has been reported on SPR PJONA6K3B3 Port 2050 Open To Tls 1.0 When Server Controller Is Running, Weakening Security.

This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal