Forum Discussion

luke_xu_56087

Nimbostratus

Dec 07, 2012

How to force client ssl profile to use tls 1.0 only?

We are running version 11.1, is there a way to force client ssl profile to use tls 1.0 only?

config

design

Elias_O_16228

Nimbostratus

Dec 07, 2012

Hi Luke,

You will have to modify the cipher. Go to Local Traffic>Profile>SSL>client> Cipher: The cipher is probably on default. Check the square box on the right corner, and modify delet the "default" and change to read: TLSv1.0 (you are done). Click update.

I have played with this sometime. We are currently only accepting TLSv1.2, which is similar in configuration.

Regards

Elias

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

How to force client ssl profile to use tls 1.0 only?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Recommendation for Adv. Lab

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Related Content

SSL Profiles Part 8: Client Authentication

HTTP Brute Force Mitigation Playbook: Bot Profile for Brute Force Mitigations - Chapter 5

Extend visibility - BIG-IP joins forces with CrowdStrike

Client SSL Profile

Client vs Server SSL profile

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS