Originally posted by: james.francione@phci.org

I have a perl script installed on AIX lpar running 7.1  that is doing a REST call to a server .  The script and the  REST call is working as designed.  I now have to enforce TLS 1.2 for that REST API call in the perl script but I do not know what I have to modify.  I have looked at the /var/ssl/openssl.cnf file  and have searched IBM docs, and websites, and have not found anything that would show me how this would be done. 

Any help would be appreciated as I have been given to the end of the month 10/2019  before the server that I am sending the REST request to will stop accepting TLS 1.0 traffic.

thank you

Jim

Originally posted by: CS5D_Jesse_Harmon

Jim,

I am not sure if you already have a solution but maybe this will help you out:

https://metacpan.org/pod/REST::Client

useragent
An LWP::UserAgent object, ready to make http requests.

REST::Client will provide a default for you if you do not set this.

https://stackoverflow.com/questions/51110181/perl-lwp-why-does-iosocketssl-use-tls-1-0-while-netssl-uses-tls-1-2

Changing my LWP::UserAgent instantiation solved the problem:

my $ua = LWP::UserAgent->new(ssl_opts => {
    verify_hostname => 0,
    SSL_cipher_list => '',
});

Thanks,

Jesse