More test results
MQ Server is MQ 9.2.0.3
MQ Client is MQ 9.2.0.2. A vendor product that uses the Oracle JRE and the IBM MQ classes for Java API
SVRCONN Channel on MQ server is always ANY_TLS12_OR_HIGHER
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = TLS_RSA_WITH_AES_256_CBC_SHA256
The above works, the channel starts and runs with this CipherSpec
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = ANY_TLS12_OR_HIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = *TLS12ORHIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = "*TLS12ORHIGHER"
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
Removed wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = ANY_TLS12_OR_HIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
Removed wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = *TLS12ORHIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
Removed wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client Cipher Suite = "*TLS12ORHIGHER"
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=true
Client Cipher Suite = ANY_TLS12_OR_HIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=true
Client Cipher Suite = *TLS12ORHIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
wrapper.java.additional.NN=-Dcom.ibm.mq.cfg.useIBMCipherMappings=true
Client Cipher Suite = "*TLS12ORHIGHER"
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
------------------------------
Peter Potkay
------------------------------
Original Message:
Sent: Fri September 03, 2021 03:45 PM
From: Peter Potkay
Subject: Java Client and ANY_TLS12_OR_HIGHER
MQ Server is MQ 9.2.0.3
MQ Client is MQ 9.2.0.2. A vendor product that uses the Oracle JRE and the IBM MQ classes for Java API
SVRCONN channel on MQ server is always ANY_TLS12_OR_HIGHER
I would like to get the client side to use ANY_TLS12_OR_HIGHER as well.
-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client side Cipher Suite = TLS_RSA_WITH_AES_256_CBC_SHA256
The above works, the channel starts and runs with this CipherSpec
-Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client side Cipher Suite = ANY_TLS12_OR_HIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
Removed -Dcom.ibm.mq.cfg.useIBMCipherMappings=false
Client side Cipher Suite = ANY_TLS12_OR_HIGHER
Connection Failed: (MQRC_UNSUPPORTED_CIPHER_SUITE) MQJE001: Completion Code '2', Reason '2400'.
What would you try next?
------------------------------
Peter Potkay
------------------------------