cancel
Showing results for 
Search instead for 
Did you mean: 

Exos how to disable SSL3 on httpd management

Exos how to disable SSL3 on httpd management

Keith9
Contributor III

On our quarterly internal vulnerability scans this keeps coming up on our EXOS switches.  Example I’m looking at an X450G2 stack right now.  It shows port 443 SSL v 3 is enabled.  How can I disable SSL 3 and enforce TLS 1.2 only?

 

Thanks!

 

Oh switch stack in question is running 22.5.1.7

2 REPLIES 2

StephanH
Valued Contributor III

Hello Pawnfodder,

you can't change the TLS version but you can select available ciphers since version 22.4 with "configure ssh2 enable cipher mac"

Regards Stephan

Pawnfodder
New Contributor

Just adding in here as I can’t seem to find the answer anywhere?  

 

I have switches on current firmware, but am wondering how to disable SSLv3 for the web management page.  Certainly running a newer firmware doesn’t disable SSLv3 from being used on 443.

 

Is the recommendation to just disable https altogether? Abandon ship vs a quick fix?

GTM-P2G8KFN