How do you configure Carbon SSL ?

Hi, I am a newbie and inherited Carbon installation which I am trying to figure out how to properly configure. The Carbon installation was developed by some WSO2 consultant who already left. Our installation uses self-signed SSL certificate to get to the carbon admin page (https://xxxxx:9443/carbon), and has services on port 9763. We just had some network security assessment that came back with the following findings: a) this site supports weak SSL ciphers (DES-CBC) b) this site supports non-secure Diffie-Hellman public-key value of 1 (recommends: disable D-H key exchange, or disable FIPS mode) c) the website that runs on port 9763 divulges the version and the http server capabilities. I have spent the day scouring the %CARBON_HOME% directory and look at the config files, and haven't been able to figure out how to remediate the above findings. Can someone point me to where those are configured in, and/or how to remediate the above findings? Thanks much.