本文介绍了MQ9 + oracle-JDK8 Cipersuites和密码规范的处理方法，对大家解决问题具有一定的参考价值，需要的朋友们下面随着小编来一起学习吧！ 问题描述 我可以将哪些Cipersuites和Cipher规范用于IBM MQ v9 + Oracle-JDK v8？What Cipersuites and Cipher Specs, can I use for IBM MQ v9 + Oracle-JDK v8?我需要有关FIPS参数的更多信息。当我尝试使用FIPS参数时，我没有更改MQ级别的任何内容，但在JMS客户端中将其更改为true。这有什么用？它与cipher-spec或cipher-suite有什么关系？I need more information on the FIPS parameter. When I tried with FIPS parameter, I didn't change anything in MQ level, but changed it to true in JMS client. What is use of this? How is it related to cipher-spec or cipher-suite?只想查看以下流程是否正确，以避免授权例外just want to review below process are correct way to avoid Authorization exception setmqaut -m TLSTEST.QM -t qmgr -p clientadmin + connect + dsp + inq setmqaut -m TLSTEST.QM -t queue -p clientadmin -n'**' + put + get + browse + dsp + inq setmqaut -m TLSTEST.QM -t qmgr -p clientadmin +connect +dsp +inqsetmqaut -m TLSTEST.QM -t queue -p clientadmin -n '**' +put +get+browse +dsp +inq runmqsc TLSTEST.QM ALTER AUTHINFO（SYSTEM.DEFAULT.AUTHINFO.IDPWOS） AUTHTYPE（IDPWOS）CHCKCLNT（可选）runmqsc TLSTEST.QM ALTER AUTHINFO(SYSTEM.DEFAULT.AUTHINFO.IDPWOS)AUTHTYPE(IDPWOS) CHCKCLNT(OPTIONAL) 推荐答案我在回答你的问题时提供的信息带有MQ8的JDk8密码套件的TTLS2？适用于这个问题。The information already provided in my answer to your question "TLSv2 with JDk8 Ciphersuites with MQ8? regarding MQ8 + Oracle-JDK8 will apply to this question.根据Mark Taylor给出的演示文稿 IBM MQ中的新功能？，MQ v9.0.0.0的GA版本基于MQ v8.0.0.4以及功能更改。Per a presentation given by Mark Taylor "What’s new in IBM MQ?", the GA release of MQ v9.0.0.0 was based on MQ v8.0.0.4 plus functional changes. APAR IV66840 显示该修复程序的目标是在8.0.0.2中交付。 APAR IV66840 shows the fix is targeted for delivery in 8.0.0.2.基于此v9.0.0.0，此APAR将包含在v8.0.0.2及更高版本中提供的相同Oracle映射。Based on this v9.0.0.0 would have this APAR included with the same Oracle mapping available in v8.0.0.2 and higher.有关FIPS的信息，请参阅IBM MQ v9.0知识中心页面 Federal Information Processing St andards（FIPS）。For information on FIPS please refer to the IBM MQ v9.0 Knowledge Center page "Federal Information Processing Standards (FIPS).一般情况下，这会导致MQ禁用弱密码规范。In general this caused MQ to disable weak cipherspecs. In与Java的关系，像sslFipsRequired这样的设置会导致MQ为具有双映射的Cipersuites使用优先于SSL的TLS，但是对于任何最新版本的MQ，任何具有双映射的密码套件默认都被禁用为弱密码套件In relation to Java, the settings like sslFipsRequired would cause MQ to use TLS in preference to SSL for Cipersuites that had a dual mapping, but as of any recent version of MQ any of those Ciphersuites that had dual mapping have been disabled by default as weak Ciphersuits. IBM developerWorks的博客文章 MQ Java，TLS密码，非IBM JRE& APAR IT06775，IV66840，IT09423，IT10837 - HELP ME PLEASE！详细说明sslFipsRequired和preferTLS行为在最近的APAR中的变化情况。IBM developerWorks blog post "MQ Java, TLS Ciphers, Non-IBM JREs & APARs IT06775, IV66840, IT09423, IT10837 -- HELP ME PLEASE!" has details on how the sslFipsRequired and preferTLS behavior has changed over recent APARs. 这篇关于MQ9 + oracle-JDK8 Cipersuites和密码规范的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！