Forum Discussion

Nimbostratus

7 years ago

Solved

Disabling Ciphers

Guys, We are deploying Skype at work. The Skype team would like me to disable the "Weak" Ciphers and only enable the others. I know you can disable / enable them in the clientssl profile under...

BIG-IP

LTM

security

Samir_Jha_52506
7 years ago
@Rob, Do you want to disable only Weak cipher, which you have pasted in Question section. Let us know.

Simon_Blakely

Employee

7 years ago

Yes, you need to set this in the clientSSL profile applied to the virtual.

You can also create a clientssl profile that specifies your selected ciphers, and use that profile as the parent profile for the Virtual server specific clientssl profiles. Then if you need to change the ciphers set for all your virtuals, you can update the parent and change all the child profiles at once.

Do NOT modify the default clientSSL profile

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Disabling Ciphers

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

About vlangroup traffic

Help with SSH Virtual Server

iRule Developer Tools

F5 rate limiting with Irule

"01020066:3: The requested Node (/Common/fqdn1) already exists in partition Common."

Related Content

Disable below cipher

Disabling Weak Ciphers

Disabling Specific Weak Cipher Suites

Cipher Suite Practices and Pitfalls

How to disable weak cipher from Client SSL Profile

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS