JSS web page access from new Chrome

tomgi
New Contributor II

Hi all,

We update last night our Google Chrome Apps to last version (45.0.2454.85).
But since, we can't acces JSS anymore from Chrome.

Here is what the error message says : "Server has a weak ephemeral Diffie-Hellman public
ERR_SSL_WEAK_SERVER_EPHEMERAL_DH_KEY"

We already find how "fix" that message on Firefox, by changing those keys :
security.ssl3.dhe_rsa_aes_128_sha
security.ssl3.dhe_rsa_aes_256_sha

from true to false in user prefs.
We use a self signed certificate for the JSS.
But I can't find any information on how disable that on Chrome.

Does anyone could help ?

4 REPLIES 4

grahamfw
New Contributor III

I think we simply removed those from the tomcat config for each of our webapps. Is there a reason you can't do that?

djwojo
Contributor

I followed the Cipher changes for 9.73 and everything works now.

Tomcat Supported Ciphers

millersc
Valued Contributor

Got hit by this also with Chrome 45 this morning. Follow what @djwojo posted and you'll be fine. Make a backup just in case.

bwiessner
Contributor II

We had the same issue happened. I freaked out and contacted support. Here is the solution. I tested it and it worked great for both newest versions of Chrome and FireFox.

https://jamfnation.jamfsoftware.com/discussion.html?id=15032