Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1193
Views
0
Helpful
1
Replies

TLS Version

schwager
Level 1
Level 1

‎11-14-2013 06:38 AM

Hello,

wich version of TLS is used in an E-Mail Security Appliance C160 box with AsyncOS Version 7.6.3-019?

TLS 1.2? Other? Is more then one version supported?

best regards,

Hermann

Labels:
0 Helpful
1 Reply 1

Robert Sherwin
Cisco Employee
Cisco Employee

‎11-14-2013 08:11 AM

At this time, the appliance and our AsyncOS only runs and supports TLS v1.

Currently - there it is not possible to change the behavior on the appliance to use TLS version 1.1 or 1.2.

You can change the Cipher and ssl method with the CLI command "sslconfig".

If you execute the command on your Appliance you will see the following information:

#########################

example.run> sslconfig

sslconfig settings:

  GUI HTTPS method:  sslv3tlsv1

  GUI HTTPS ciphers: RC4-SHA:RC4-MD5:ALL

  Inbound SMTP method:  sslv3tlsv1

  Inbound SMTP ciphers: RC4-SHA:RC4-MD5:ALL

  Outbound SMTP method:  sslv3tlsv1

  Outbound SMTP ciphers: RC4-SHA:RC4-MD5:ALL

Choose the operation you want to perform:

- GUI - Edit GUI HTTPS ssl settings.

- INBOUND - Edit Inbound SMTP ssl settings.

- OUTBOUND - Edit Outbound SMTP ssl settings.

- VERIFY - Verify and show ssl cipher list.

[]> inbound

Enter the inbound SMTP ssl method you want to use.

1. SSL v2.

2. SSL v3

3. TLS v1

4. SSL v2 and v3

5. SSL v3 and TLS v1

6. SSL v2, v3 and TLS v1

[5]>

#########################

Hope that helps!

-Robert

Cheers,
Robert Sherwin
0 Helpful
Customers Also Viewed These Support Documents