# SSL Handshake Failure (Java 7)

### Problem <a href="#problem" id="problem"></a>

In a Java 7 client environment, SSL handshake issues may be encountered while connecting to Sealights showing errors similar to below:

\_\_*Caused by: javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)*\_"

{% hint style="info" %}
Sealights supports TLS 1.2 connections as described here: <https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/secure-connections-supported-viewer-protocols-ciphers.html>
{% endhint %}

### Solution <a href="#solution" id="solution"></a>

Take the following steps to better understand the environment between client and server:

1. Ensure the Java 7 client is using TLS 1.2 by adding `-Dhttps.protocols=TLSv1.2`
2. Enable SSL debug mode using `-Djavax.net.debug=ssl`in order to display and review the client and server cipher suites in use for the attempted connection
3. If needed, add TLS 1.2 ciphers to the Java 7 client environment using `-Dhttps.cipherSuites=<comma separated list of ciphers>` per the example below

-`Dhttps.cipherSuites=TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_GCM_SHA256`

### Related articles <a href="#related-articles" id="related-articles"></a>

* [nodejs-javascript-heap-out-of-memory](https://docs.sealights.io/knowledgebase/setup-and-configuration/troubleshooting-faq/node-javascript/nodejs-javascript-heap-out-of-memory "mention") (NodeJS)
* [#connectivity-check-agents-cannot-reach-sealights-platform-unreachable-network-errors](https://docs.sealights.io/knowledgebase/setup-and-configuration/general/agents-connectivity#connectivity-check-agents-cannot-reach-sealights-platform-unreachable-network-errors "mention")
* [namespace-what-to-configure](https://docs.sealights.io/knowledgebase/setup-and-configuration/troubleshooting-faq/.net-.netcore/namespace-what-to-configure "mention") (.Net / .NetCore)
* [which-packages-to-configure](https://docs.sealights.io/knowledgebase/setup-and-configuration/troubleshooting-faq/java/which-packages-to-configure "mention") (Java)
* [linux-.netcore-profiler-fails-to-start](https://docs.sealights.io/knowledgebase/setup-and-configuration/troubleshooting-faq/.net-.netcore/linux-.netcore-profiler-fails-to-start "mention")


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.sealights.io/knowledgebase/setup-and-configuration/troubleshooting-faq/java/ssl-certificate-errors/ssl-handshake-failure-java-7.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.