We run a legacy application that uses Java 6. Recently, our partners notified us that they are going to drop support of TLS versions older than TLS 1.1. This means that after the upgrade our outbound HTTPS connections to these partners will stop working.
The application is big and upgrade to newer version of JDK is something that we cannot afford now.
We tried to use the latest non-public release of Java 6 that we downloaded from restricted section of Oracle site (jdk-6u113). Although release notes for this release of Java 6 say that TLS1.1 is available, it is not enabled out of the box, there is nothing in there saying about how to enable it via changes in configuration, and an attempt to establish a connection to the endpoint which does not support pre-TLS1.1 results in SSLHandshakeException
Now I am trying to enable TLS1.1. So far I have tried a couple different options:
Adding a property
deployment.security.TLSv1.1=trueto deployment.properties file in .java folder for the user who runs javaIncluding
-Ddeployment.security.TLSv1.1=truesystem property to the java command line.
Neither option seem to work; it appears that deployment.security.TLSv1.1 property is only used by never version of Java.
Please can someone let me know how we should enable TLS1.1 by means of changing the configuration ?
Also need to say that the application in question is quite big, and making change in the code in order to enable TLS 1.1 is something we would like to avoid.
