So, from the spec file:
sslVersions = <versions_list>
* Comma-separated list of SSL versions to support for incoming connections.
* The versions available are "ssl3", "tls1.0", "tls1.1", and "tls1.2".
* The special version "*" selects all supported versions.
The version "tls"
selects all versions tls1.0 or newer.
* If a version is prefixed with "-" it is removed from the list.
* SSLv2 is always disabled; "-ssl2" is accepted in the version list
but does nothing.
* When configured in FIPS mode, "ssl3" is always disabled regardless
of this configuration.
* Default: The default can vary. See the 'sslVersions' setting in
the $SPLUNK_HOME/etc/system/default/server.conf file for the
curent default.
If you are trying to restrict ssl2, there is no reason to modify the sslVersion or sslVersionsForClient settings. However. Where I think your syntax is wrong is that you have a preceding comma, but nothing in front of it:
[sslConfig]
sslVersions = ,-ssl2
slVersionsForClient = ,-ssl2
I tested the following and had no issue:
[sslConfig]
sslVersions = -ssl2
sslVersionsForClient = -ssl2
It also appears there may be a typo in yours as well; You had slVersionsForClient instead of sslVersionsForClient
