With the latest version of Firefox and Identity Manager 4.0.2, https connections got refused with an error message in Firefox:
ssl_error_weak_server_ephemeral_dh_key

The underlying cause is from the Logjam attack, where the fix is to use min 768, preferrably 1024 or 2048 bit Diffie-Hellman temporary keys in SSL encrypted communications.

The fix for both RBPM (User Application) and iManager was to modify each corresponding server.xml to specify the crypto used.

- Upgraded Tomcat SSL cryptos to compensate for short Diffie-Hellman temporary keys:
http://bestcodetips.com/fix-ssl_erro...emeral_dh_key/

locate server.xml
nano -w /etc/opt/novell/tomcat5/server.xml

<!-- Define a SSL HTTP/1.1 Connector on port 8443 -->

<Connector port="8443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"
ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_W ITH_AES_256_CBC_SHA384,
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_W ITH_RC4_128_SHA,
TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_1 28_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,
TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_ SHA"
clientAuth="false" sslProtocol="TLS" />

- Restarted Tomcat
service novell-tomcat5 restart