Forum Discussion
Sriram_Shanmuga
Altostratus
AltostratusHow to disable weak cipher from Client SSL Profile
Hi,
We have disabled few ciphers and we have rating "A" in qualys ssl checker portal.
We have a requirement to disable weak ciphers as well.
Could some one advice how to disable weak ciphers.
Pl...
By using DEFAULT:@STRENGTH command you can preferred the ciphers to use only Strength.
ka1021Altostratus
AltostratusHi Sriram,
Your can disable weak ciphers by putting following cipher string in clientssl_profile Local Traffic ›› Profiles : SSL : Client >> Ciphers (Cipher String) DEFAULT:!RSA:!DES:!3DES:!DHE
Also have a look at below KB articles: For 11.x - https://support.f5.com/csp/article/K13171 For 12.x - https://support.f5.com/csp/article/K13170
Regards, Kaustubh
Sriram_ShanmugaAltostratus
AltostratusHi Kaustubh,
Thanks for your suggestions. I will update you once the changes has been made.
thanks Sriram
