Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Email Security Quick-links: ESA Product Support | SMA Product Support | Email Submission and Tracking Portal | Cisco SecurityHub
Current General Deployment (GD) Releases:
ESA: 11.0.0-264 WSA: 10.5.1-296 SMA: 11.0.0-115 Email Plug-in (Reporting): 1.0.1-048 Email Plug-in (Encryption): 1.0.0-036

New Member

TLS Version

Hello,

wich version of TLS is used in an E-Mail Security Appliance C160 box with AsyncOS Version 7.6.3-019?

TLS 1.2? Other? Is more then one version supported?

best regards,

Hermann

1 REPLY
Cisco Employee

TLS Version

At this time, the appliance and our AsyncOS only runs and supports TLS v1.

Currently - there it is not possible to change the behavior on the appliance to use TLS version 1.1 or 1.2.

You can change the Cipher and ssl method with the CLI command "sslconfig".

If you execute the command on your Appliance you will see the following information:

#########################

example.run> sslconfig

sslconfig settings:

  GUI HTTPS method:  sslv3tlsv1

  GUI HTTPS ciphers: RC4-SHA:RC4-MD5:ALL

  Inbound SMTP method:  sslv3tlsv1

  Inbound SMTP ciphers: RC4-SHA:RC4-MD5:ALL

  Outbound SMTP method:  sslv3tlsv1

  Outbound SMTP ciphers: RC4-SHA:RC4-MD5:ALL

Choose the operation you want to perform:

- GUI - Edit GUI HTTPS ssl settings.

- INBOUND - Edit Inbound SMTP ssl settings.

- OUTBOUND - Edit Outbound SMTP ssl settings.

- VERIFY - Verify and show ssl cipher list.

[]> inbound

Enter the inbound SMTP ssl method you want to use.

1. SSL v2.

2. SSL v3

3. TLS v1

4. SSL v2 and v3

5. SSL v3 and TLS v1

6. SSL v2, v3 and TLS v1

[5]>

#########################

Hope that helps!

-Robert

443
Views
0
Helpful
1
Replies