If using SSL in Skybot server, Tomcat allows low encryption ciphers by default, which can cause audit failures for some companies.  To fix this, we need to edit the server.xml file located in:

 C:\Program Files (x86)\Skybot\Skybot Scheduler\conf

for Windows and

/opt/skybot/server/conf

for Linux/AIX/UNIX

Need to find the SSL connector line and add this key to the end of it (before the />:

ciphers='SSL_DHE_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_AES_256_CBC_SHA, SSL_DHE_RSA_WITH_AES_128_CBC_SHA,SSL_RSA_WITH_AES_128_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_RC4_128_SHA,SSL_RSA_WITH_RC4_128_MD5, TLS_DHE_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_RC4_128_MD5'

The final config should look something like this:


            SSLEnabled='true' maxThreads='150' scheme='https' secure='true'
           keystoreFile='conf/skybot.keystore' keystorePass='skybot'
               clientAuth='false' sslProtocol='TLS' ciphers='SSL_DHE_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_AES_256_CBC_SHA, SSL_DHE_RSA_WITH_AES_128_CBC_SHA,SSL_RSA_WITH_AES_128_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_RC4_128_SHA,SSL_RSA_WITH_RC4_128_MD5, TLS_DHE_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_RC4_128_MD5'/>

Stop and restart the Skybot service and now only 128 and 256bit ciphers will be used.