JDK 11 protocol TLSv1.3 - Liferay Learn

Legacy Knowledge Base

Published Jun. 30, 2025

JDK 11 protocol TLSv1.3

Written By

Daniel Martinez Cisneros

Legacy Article

You are viewing an article from our legacy "FastTrack"publication program, made available for informational purposes. Articlesin this program were published without a requirement for independentediting or verification and are provided "as is" withoutguarantee.

Before using any information from this article, independently verify itssuitability for your situation and project.

Issue

TLS protocol version used by default in JDK 11 is TLSv1.3, and connection with third parties can be affected, default protocols are:

-Dhttps.protocols=TLSv1.2 (default in Java 8)
-Dhttps.protocols=TLSv1.3 (default in Java 11)
-Dhttps.protocols=TLSv1.0 (default in older versions)

Trying to connect with a third party, protocols supported will be added in the request,

"supported_versions (43)": {
"versions": [TLSv1.3]
}

In order to see all information about connections with https add this property -Djavax.net.debug=ssl:handshake

If protocol between client and server are not the same, the following error is shown:

Received fatal alert: handshake_failure

Environment

Liferay DXP 7.3

Resolution

In order to solve this problem, TLS protocol can be configured adding this property:

-Dhttps.protocols=TLSv1.2,TLSv1.3 (Only for https connections)

-Djdk.tls.client.protocols=TLSv1.2,TLSv1.3 (For all kinds of connections)

Additional Information

Did this article resolve your issue ?

Legacy Knowledge Base

Capabilities

View All Capabilities

Product

Analytics Cloud

Education

Contact Us

Submit Feedback

Connect

Powered by Liferay

© 2024 Liferay Inc. All Rights Reserved • Privacy Policy