Does NuGenesis 9 support SHA-2 algorithms of the TLS 1.x protocols for LDAPS and HTTPS? - WKB62012
Article number: 62012
ENVIRONMENT
- NuGenesis 9 SDMS
- NuGenesis 9 LMS
ANSWER
The short answer is Yes; NuGenesis 9 supports SHA-2 and TLS up to v1.2.
The long answer:
SHA-2 is an encryption algorithm that can be used as the hash function in the TLS 1.2 protocol and also as the encryption algorithm for certificates for server authentication.
NuGenesis 9 can use SHA-2/TLS 1.x in a few areas:
- SDMS WebVision, LMS SampleShare: NuGenesis 9 does support HTTPS for connections to the WebVision and SampleShare web apps. Here, the limiting factors are the protocols supported by the web server's OS, IIS, the client's OS, and the Web browser. Windows Server 2019, Server 2016, Server 2012, IIS, IE 11, and Windows 7+ all support TLS 1.2, so by definition they support SHA-2 encryption. Unfortunately, Schannel in those Windows versions does not support the use of TLS 1.3, which means that te NuGenesis web apps cannot make use of TLS 1.3
- LDAPS authentication in NuGenesis LMS: the controlling factor here for TLS/SHA support is the version of Java Runtime, as embedded in the LMS server. As of NG9, the LMS server does support TLS 1.2/SHA-2 for LDAPS authentication, because the LDAPS communication is handled by the Java environment, and the JRE embedded in the LMS server supports TLS 1.2 and SHA-2. The version of Java as supplied with NuGenesis 9 LMS is 1.8 update 152, while TLS 1.3 was implemented in v1.8 update 261
- LDAPS authentication in NuGenesis SDMS: the libraries that handle TLS and LDAP communications for SDMS applications, starting in the initial release of NuGenesis 9, support SHA-2 and up to TLS 1.2. These libraries do not support TLS 1.3
ADDITIONAL INFORMATION
See also:
- Does NuGenesis 8 SDMS support SHA-2 algorithms or the TLS 1.x protocols for LDAPS and HTTPS?
- Does NuGenesis 8 LMS support SHA-2 algorithms or the TLS 1.x protocols for LDAPS and HTTPS?
- Protocols in TLS/SSL (Schannel SSP) - Win32 apps | Microsoft Learn
id62012, comms, NGLMS, NGLMSLIC, NGLMSOPT, SDMS, SDMS8, SDMS8NU, SUPISDMS, SUPNG