When you upgrade to Adaptive Server version 12.5.3 and later, the cipher suite preferences are the server defaults, and sp_ssladmin option lscipher displays no preferences. The server uses its default preferences, those defined by “All”. The system security officer should consider the security policies employed at his or her site and the available SSL cipher suites to decide whether to restrict cipher suites and which cipher suites are appropriate for the security policies.
If you upgrade from Adaptive Server version 12.5.3 and later and have set cipher suite preferences, those preferences remain after upgrade. After the upgrade is complete, review your server's cipher suite preferences with current security policies and the lists of supported and unsupported cipher suites found in tables Table 9-1. Omit any cipher suites that are not supported.
If you have set SSL cipher suite preferences and want to remove all preferences from the server and use default preferences, delete the preferences from their storage location in system catalogs using the following commands:
1> sp_configure 'allow updates to system tables', 1 2> go 1> delete from master..sysattributes where class=24 2> go 1> sp_configure 'allow updates to system tables', 0 2> go
These commands can be executed only by the system security officer or system administrator.
