查考:http://askubuntu.com/questions/643037/how-to-enable-tls-1-2-in-apache
使web服務器支持TLS1.2需要的服務器運行環境:
apache對應版本應>=2.2.23;
OpenSSL對應版本應>= 1.0.1
查看apache版本
[root@localhost 桌面]# httpd -v
Server version: Apache/2.4.6 (CentOS)
Server built: Jul 18 2016 15:30:14
查看OpenSSL版本
[root@localhost 桌面]# openssl version
OpenSSL 1.0.1e-fips 11 Feb 2013
服務器環境配置好之後修改:/etc/httpd/conf.d/ssl.conf,添加對TLS1.2的支持,在80行左右添加:
SSLProtocol TLSv1.2
#ssl.conf
#SSL Protocol support:
#List the enable protocol levels with which clients will be able to
#connect. Disable SSLv2 access by default:
SSLProtocol all -SSLv2
SSLProtocol TLSv1.2