Trying to setup a brand new Sonar server, but I can not figure out how to setup the server LDAP settings to accept TLSv1, TLSv1.1, TLSv1.2.
I get exceptions when starting the server with our LDAP configurations due to:
[javax.net](http://javax.net/).ssl.SSLHandshakeException: The server selected protocol version TLS10 is not accepted by client preferences [TLS13, TLS12]
From what I read I should be able to achieve this by configuring java itself to accept it. Therefore I have tried (without success):
-
Adding java options to
wrapper.conf
- e.g.:
wrapper.java.additional.3=-Djdk.tls.client.protocols="TLSv1,TLSv1.1,TLSv1.2"
- e.g.:
-
Adding java options to sonar.properties
- e.g:
sonar.web.javaOpts=-Xmx512m -Xms128m -XX:+HeapDumpOnOutOfMemoryError -Djdk.tls.client.protocols="TLSv1,TLSv1.1,TLSv1.2"
- e.g:
sonar.web.javaAdditionalOpts=-Djdk.tls.client.protocols="TLSv1,TLSv1.1,TLSv1.2"
- e.g:
We are using:
- SonarQube 8.4.1
- Java 11 setup via wrapper config
wrapper.java.command=/usr/lib/jvm/java-11-openjdk-11.0.8.10-0.el8_2.x86_64/bin/java