The file <spotfire server installation>/tomcat/conf/server.xml contains the TLS configuration for the HTTPS.

In this version of Spotfire, the server.xml file is aligned with Mozilla's Modern Compatibility configuration. The ciphers and protocols in the configuration file can be adjusted to accommodate for environment specific needs.

 <Connector port="443"
              [...]
               SSLEnabled="true"
               scheme="https"
               secure="true">
      <SSLHostConfig certificateVerification="none"
                    [...]
                     sslProtocol="TLS"
                     protocols="TLSv1.2+TLSv1.3"
                     honorCipherOrder="true"
                     ciphers="<cipher-suites>"
                     [...]
      </SSLHostConfig>
    </Connector>

See Configuring HTTPS for how to enable HTTPS for front end communication, between Spotfire clients and Spotfire Server.

See Authentication using X.509 client certificates for how to enable HTTPS client certificate authentication.