This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Exos how to disable SSL3 on httpd management

Exos how to disable SSL3 on httpd management

Keith9
Contributor III

‎02-11-2020 03:11 PM

On our quarterly internal vulnerability scans this keeps coming up on our EXOS switches.  Example I’m looking at an X450G2 stack right now.  It shows port 443 SSL v 3 is enabled.  How can I disable SSL 3 and enforce TLS 1.2 only?

 

Thanks!

 

Oh switch stack in question is running 22.5.1.7

0 Kudos
2 REPLIES 2

StephanH
Valued Contributor III

‎02-09-2021 07:38 PM

Hello Pawnfodder,

you can't change the TLS version but you can select available ciphers since version 22.4 with "configure ssh2 enable cipher mac"

Regards Stephan
0 Kudos

Pawnfodder
New Contributor

‎02-09-2021 06:43 PM

Just adding in here as I can’t seem to find the answer anywhere?  

 

I have switches on current firmware, but am wondering how to disable SSLv3 for the web management page.  Certainly running a newer firmware doesn’t disable SSLv3 from being used on 443.

 

Is the recommendation to just disable https altogether? Abandon ship vs a quick fix?

0 Kudos
GTM-P2G8KFN