Forum Discussion

Cirrus

Apr 03, 2019

Forcing TLSv1_2 in the SSL Server Profile

Is it possible to configure SSL Server Profile so connectins from bigip started with TLSv1_2 ? I tried to put in a ciphers field: TLSv1_2, but connections are still TLSv1, although in the client...

MVP

Apr 03, 2019

Did you disable TLS1.0 and 1.1 in the options field??

Possible protocol negation options are No DTLS, No SSL, No SSLv2, No SSLv3, No TLS, No TLSv1, No TLSv1.1, and No TLSv1.2.

Cheers,

Kees

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Forcing TLSv1_2 in the SSL Server Profile

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Recommendation for Adv. Lab

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

Related Content

HTTP Brute Force Mitigation Playbook: Bot Profile for Brute Force Mitigations - Chapter 5

Extend visibility - BIG-IP joins forces with CrowdStrike

SSH Brute Force Protection with SSH Proxy

Explore TCP and TLS Profiles for Optimal S3 with MinIO Clusters

Brute Force protection for single parameter like OTP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS