cancel
Showing results for 
Search instead for 
Did you mean: 

Can I disable TLS 1.0 on NAC?

Can I disable TLS 1.0 on NAC?

StephanH
Valued Contributor III
Hello,

is there a possibility to disable TLS 1.0 on NAC (maybe via Appliance Properties)?

This is a demand of some security officers.

The goal here is that the clients are not offered TLS 1.0 during the connection negotiation.

Best regards
Stephan
Regards Stephan
6 REPLIES 6

Michael_Brady
New Contributor

I take it back, don’t know what happened the first time around but this worked the second time I tried it.
We’ll rescan and see if anything changes.

Thanks,
Mike

Michael_Brady
New Contributor

Hmm… Doesn’t look like it is working for me.  I can’t save after trying to add the value.

OscarK
Extreme Employee

Hi Michael,

 

disabling can be done with an engine property, it is mentioned in below article.

https://gtacknowledge.extremenetworks.com/articles/Q_A/000043144

 

In my lab I can see TLS 1.0 is still supported on 8.4.3.24

 

Michael_Brady
New Contributor

I’m running 8.4.3.24 and I just noticed that our internal vulnerability scanner still flagged our NAC appliance as supporting TLS 1.0 and 1.1.  I have the same requirements from security officers as mentioned above and was wondering if there was a way to confirm (prove) that it disabled.
 

GTM-P2G8KFN