TLS and Cipher Suites

Dear All,
Could you please suggest where to update TLS and Cipher Suites in standalone.xml file or somewhere for Keycloak.
Objective is to use only TLS1.2 and disable weak Cipher Suites.

Please suggest.

Hi Skmishra,

Here is just one of suggestion in standalone.xml:

<https-listener name="https" socket-binding="https" security-realm="ApplicationRealm" enable-http2="true" enabled-protocols="TLSv1.2" enabled-cipher-suites="TLS_RSA_WITH_AES_128_GCM_SHA256"/>