cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

Ciphers for restricting traffic to TLS1.2

Johnde
Cirrus
Cirrus

Hello team,

 

We want to disable all the lower TLS/SSL versions like SSLv3, TLS1.0 and TLS1.2 under client SSL profiles. I know i can easily do it through options list by enabling no SSLv3 etc. I know we can also achieve it using ciphers. I am looking for that Cipher string.

 

Does anyone have it? Please share it.

 

Thank you

1 ACCEPTED SOLUTION

Please try below string.

 

ALL:!DHE:!ADH:!EXPORT:!SSLv2:!EXPORT40:!EXP:!LOW:!RC4:!SSLv3:!MEDIUM:!3DES:!RSA:!TLSv1:!TLSv1_1

 

I've used this in my setup and it is working as expected. Hope it helps you too.

 

Mayur

View solution in original post

2 REPLIES 2

Please try below string.

 

ALL:!DHE:!ADH:!EXPORT:!SSLv2:!EXPORT40:!EXP:!LOW:!RC4:!SSLv3:!MEDIUM:!3DES:!RSA:!TLSv1:!TLSv1_1

 

I've used this in my setup and it is working as expected. Hope it helps you too.

 

Mayur

It worked as per expectations man. Thanks a lot!