For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

GeoffSweet_3221's avatar
GeoffSweet_3221
Icon for Nimbostratus rankNimbostratus
17 years ago

Disable Anonymous Authentication for SSL

I have followed a couple of posts around trying to figure out how to make this change but so far without any luck. I have a medium priority call in with F5, but I figured while I am waiting for my ca...
config
design
swo0sh_gt_13163's avatar
swo0sh_gt_13163
Icon for Altostratus rankAltostratus
11 years ago

Hello Venomlace,

I think you can use your current cipher suites defined in your Client-SSL Profile, by adding !ADH within the same suite, to discard the ADH from being negotiate.

You may update your current cipher suite to the following. 

NATIVE:!MD5:!EXPORT:!DES:!SSLv3:!ADH:!RC4:@SPEED

I hope this helps.

Cheers! Darshan

  • Venomlace_13384's avatar
    Venomlace_13384
    Icon for Nimbostratus rankNimbostratus
    11 years ago
    Thanks much! I will test this out and see if it passes our PCI scans. I'll follow up to let you know.