TLS_VERSION configuration parameter

Use the TLS_VERSION configuration parameter to specify the Transport Layer Security (TLS) version that the database server uses for network connections. TLS version 1.2 is enabled by default if no specification is done in onconfig file.

onconfig.std value

Not set. – which defaults to 1.2.

default value

1.2

values

One or more TLS versions. Multiple versions are separated by commas.

1.2 = TLS version 1.2
1.3 = TLS version 1.3

Note: TLS versions 1.0 and 1.1 are disabled starting Informix Server version 14.10.xC8.

takes effect

After you edit the onconfig file and restart the database server.

Usage

TLS is the successor to Secure Sockets Layer (SSL) and provides cryptographic protocols for client/server connections.

GSKit TLS 1.3 does not support FIPS mode yet. If the server offers both TLS 1.2 and TLS 1.3, then the preference for FIPS will cause connection via TLS 1.2 .

Note:

Limiting server to TLS 1.3 will require disabling FIPS mode by the client. JDBC support for TLS 1.3 requires Java 11.