Java EE (Java Enterprise Edition) General Discussion

I can't seem to find anything on how to do this. I am using a JNDI based mail provider in Websphere. As such, I am passing off some of the work of creating a connection and all to Websphere. I am able to force it to do SSL connections with no problem using things like mail.smtps.starttls.enable= true and other related parameters that get passed in fine. However, I have searched all over and I cannot find any parameters for forcing particular cipher suites. I want to be able to force a connection under only the cipher suites that are acceptable to me not what is configured on the mail server. This will ensure that my connection doesn't suddenly start going through with some weak encryption because a mail server misconfiguration surfaced. I'd rather the connection fail altogether instead of making a best effort. One can do such client side cipher suite specification in many web browsers and it appears I could do it if I was controlling the entire connection, but again it is handed off to Websphere and I want to keep it that way so I need to know what if any parameters I can pass into Websphere to specify cipher suites. Thank you in advance for any help you can provide.