8.5.000.03

Genesys Security Pack on UNIX 8.5.x Release Notes

What's New

This release contains the following new features and enhancements:

• Support for selecting initial protocol when establishing secure connection. An application can now specify the lowest compatible protocol used by Security Pack on UNIX to send and accept secure connection requests on one or more of its connections, thereby limiting the use of obsolete protocols. Use the following new option:
  
  sec-protocol
  Default Value: SSLv23
  Valid Values: SSLv23, SSLv3, TLSv1, TLSv11
  Changes Take Effect: Immediately
  
  Specifies the protocol used by the component to set up secure connections.
  
  This option is configured on one of three levels:
  • Host-level (the application host): In the [security] section of the annex of the Host object.
  • Application-level: In the [security] section of the options of the Application object.
  • Port-level (connection-level): As a transport parameter of the application's connection.
  Important

  If the component reads its configuration information solely from its configuration file, such as LCA or Genesys Deployment Agent, set this option in the security section of the appropriate configuration file (such as lca.cfg for LCA or gda.cfg for Genesys Deployment Agent).

  On a single component, this option must be configured at the same level where the certificate is configured. Across a network, if this option is configured at multiple levels (connection, application, host), the value set at the lowest level takes precedence. That is:

  • The value set at the connection level takes precedence over the value set at the application and host levels.
  • The value set at the application level takes precedence over the value set at the host level.

  (MFWK-15745)

Resolved Issues

This release contains no resolved issues.

Upgrade Notes

No special procedure is required to upgrade to release 8.5.000.03.