ssl cipher tlsv1.2 custom "AES256-SHA:AES128-SHA:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:DES-CBC3-SHA:DES-CBC-SHA" ssl cipher dtlsv1 custom "AES256-SHA:AES128-SHA" ssl dh-group group2 ssl ecdh-group group19 ssl trust-point NEW-Self-Signed outside ssl certificate-authentication fca-timeout 2 . and still have the same problem with mobile phones

yes, I checked Java --version, it showed java 1.8.0 . and in my pc I dont have any other jdk/jre installed – kcoder Feb 22 '18 at 18:02 Quality of protection levels - publib.boulder.ibm.com Quality of protection levels . You can control the default level of encryption required for access to WebSEAL over SSL (HTTPS) by configuring the quality of protection (QOP). windows server 2008 - Disabling weak ciphers - Server Fault

Deprecated SSL protocol. If you previously enabled the SSL 2.0 protocol in a custom policy, we recommend that you update your security policy to the default predefined security policy.

Solved: How do I Disable CBC mode ciphers - Cisco Community des-cbc-sha Encryption type ssl_rsa_with_des_cbc_sha ciphersuite. rc4-128-md5 Encryption type ssl_rsa_with_rc4_128_md5 ciphersuite. rc4-128-sha Encryption type ssl_rsa_with_rc4_128_sha ciphersuite . Thank for your suppot . 0 Helpful Reply. Highlighted. …

New TCP connection #1: 10.102.14.108 (1992) <-> 10.102.14.180 (443) 1 1 0.0019 (0.0019) C>S Handshake ClientHello Version 3.1 cipher suites TLS_RSA_WITH_RC4_128_MD5 TLS_RSA_WITH_RC4_128_SHA TLS_RSA_WITH_3DES_EDE_CBC_SHA TLS_RSA_WITH_DES_CBC_SHA TLS_RSA_EXPORT1024_WITH_RC4_56_SHA TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA TLS_RSA_EXPORT_WITH_RC4_40_MD5 TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 TLS_DHE_DSS

Customer has bound a HIGH Cipher Group to the SSL VIP .This Cipher Group which exists by default on the Netscaler doesn’t have TLS_RSA_WITH_3DES_EDE_CBC_SHA present in that group however the Netscaler is sending this Cipher Suite in the Server Hello as seen in Wireshark.