mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-28 18:01:23 -06:00
ab196220fd
use configuration parameters to enable ciphers provided by NSS and not considered weak. This requires 389-ds version 1.3.3.2 or later https://fedorahosted.org/freeipa/ticket/4395 Reviewed-By: Nathaniel McCallum <npmccallum@redhat.com>
7 lines
216 B
Plaintext
7 lines
216 B
Plaintext
# change configured ciphers
|
|
# the result of this update will be that all ciphers
|
|
# provided by NSS which ar not weak will be enabled
|
|
dn: cn=encryption,cn=config
|
|
only:nsSSL3Ciphers: +all
|
|
addifnew:allowWeakCipher: off
|