SMTP MT Test 46 -- not able to connect to SMTP server without TLS 1.0

98 views
Skip to first unread message

Jeff Snyder

unread,
Apr 29, 2021, 6:16:20 PM4/29/21
to Edge Test Tool (ETT)
We are currently attempting to run SMTP MT Test 46 (Generate Disposition Notification Options Header).  When we attempt to send an SMTP message to wellfo...@james.healthit.gov, we get an SSL Handshake error (Java log below):

Caused by: javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)

For security reasons, we have disabled older versions of SSL/TLS throughout our application stack. By creating a stand-alone test client to reproduce the issue, we have found that this error disappears when we remove "TLSv1" from our list of disabled algorithms. I don't understand why this is so -- I am, in fact, able to open a TLSv1.2 connection to james.healthit.gov (port 25) using openssl. 

Is there some part of the handshake that is currently requiring TLSv1?


cpatt...@updox.com

unread,
May 12, 2021, 2:45:35 PM5/12/21
to Edge Test Tool (ETT)
Hi All,
Checking back on this question. It is a blocker to completing the ONC Health IT Certification so need to resolve quickly. 
Thanks,
Connie

Sandeep Savarala

unread,
May 12, 2021, 2:50:32 PM5/12/21
to cpatt...@updox.com, Edge Test Tool (ETT)
James.healthit.gov has a self-signed certificate and your system needs to trust it. 

This case is similar to other test cases SMTP MT 17 and 45. Did you pass these?

--
You received this message because you are subscribed to the Google Groups "Edge Test Tool (ETT)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to edge-test-too...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/edge-test-tool/9392f787-d321-45e8-8041-abf15fe8b6b7n%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages