Forum Discussion

paulpatriot_129's avatar
paulpatriot_129
Icon for Nimbostratus rankNimbostratus
Jan 20, 2017

Restrict BIGIQ to TLSv1.2 Only

I need to restrict BIGIQ to TLSv1.2 only. How do you go about doing this?  
  • Kevin_K_51432's avatar
    Jan 20, 2017

    Greetings, Just a quick search through this article:

    https://support.f5.com/csp/article/K17007
    
    K17007: Restricting BIG-IQ user interface access to clients using high-encryption SSL ciphers and protocols
    

    Perhaps try:

    vi /etc/webd/webd.conf
    
    remove-> ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    add----> ssl_protocols TLSv1.2;
    
    bigstart restart webd
    bigstart status webd
    

    Kevin