How to enforce TLS v1.2 in Java program talking to...

maciej_kw · ‎05-14-2018

I am trying to get our Java client application talking to a Splunk server provided by one of our vendors.
The communication is supposed to be simple. Our client app will send just plain text messages once a while.
I am using log4j2 as a platform for communication with the Splunk server.
Below are Splunk related appender and logger defined in the log4j2.xml file.
Vendor claims they do not receive messages from us.
However they see some traffic originating from our server where the application runs.
They suggest to enforce TLS v1.2 protocol on communication with their Splunk server.
How can we do that?
log4j2 configuration:

<Appenders>
    <Http name="httpSplunk"
                url="...some.server.com:8088/services/collector/event"
                token="some-token"
                host="$${env:COMPUTERNAME}"
                index=""
                source=""
                sourcetype=""
                middleware=""
                batch_size_bytes="10240"
                batch_size_count="10"
                batch_interval="1000"
                disableCertificateValidation="true">
        <PatternLayout pattern="%m"/>
    </Http>
</Appenders>
<Loggers>
    <Root level="warn">
        <AppenderRef ref="httpSplunk"/>
    </Root>
    <Logger name="splunk.Ellenby" level="info">
        <AppenderRef ref="httpSplunk"/>
    </Logger>
</Loggers>

Thank you

Best Regards,
Maciej Kwiecinski

How to enforce TLS v1.2 in Java program talking to Splunk server via log4j2 ?

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Announcing Modern Navigation: A New Era of Splunk User Experience

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

Join the Conversation