Forum Discussion

James_Smith_299's avatar
James_Smith_299
Icon for Nimbostratus rankNimbostratus
Jun 04, 2018

Allow TLS1.2 Only

BIG-IP LTM running v12.1.2 HF2. End goal is to allow TLS1.2 only. We tried the steps below but application failed to launch.   Followed this guide to reconfigure Client SSL Profile. https://suppor...
application delivery
BIG-IP
LTM
Dali_Chauhan_33's avatar
Dali_Chauhan_33
Icon for Nimbostratus rankNimbostratus
Jun 04, 2018

Log in to the Configuration utility.

 

Navigate to Local Traffic > Profiles > SSL > Client.

 

Click Create to create a new profile, or click the name of an existing profile to edit it.

 

For a new profile, under General Properties, type a name.

 

For Configuration, click Advanced.

 

For Ciphers, select the Custom check box.

 

(BIG-IP 13.0.0 and later) Under Configuration, for Ciphers, click Cipher String.

 

Type the cipher string into the Cipher String box.

 

For example, the following string configures an SSL profile to use only TLSv1.2 protocol ciphers:

 

TLSv1_2

 

James_Smith_299's avatar
James_Smith_299
Icon for Nimbostratus rankNimbostratus
Jun 05, 2018

Hi Dali,

 

Those are the exact steps I followed. In my case I updated an existing SSL Client Profile. In the Cipher text box, replaced DEFAULT with TLSv1_2. Could the issue lie somewhere on the Windows 7 / Internet Explorer 11 client?