Under the Admin Console of GF the DefaultCipher Suites are shown :
Configuration> HTTP Service> HTTP Listeners> http-listener-2
These are the Default CipherSuites : the list of cipher suites which are enabled by default
And in this list i do see : SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, so this one is enabled by default.
SSL_RSA_WITH_NULL_MD5 : is one of the supported CipherSuite although it appears, we do not provide a way to enable this from the Admin-GUI.
To answer your question about : how to add more Cipher Suite in the list of Supported Cipher Suites of Glassfish ?
GlassFish essentially uses what is supported by the underlying JSSE.
Try the following line(s) of code to see what is supported in your installation :
String[] supportedCiphers = HttpsURLConnection.getDefaultSSLSocketFactory().getSupportedCipherSuites();
String[] defaultCiphers = HttpsURLConnection.getDefaultSSLSocketFactory().getDefaultCipherSuites();
[Message sent by forum member 'kumarjayanti' (kumarjayanti)]
http://forums.java.net/jive/thread.jspa?messageID=276969