Forum Discussion
6 Replies
Sort By
- Kevin_StewartEmployee
Add the following notation to your current cipher string in the SSL profile:
:!TLSv1.1
So that might look something like this:
DEFAULT:!TLSv1.1
- Hannes_RappNimbostratus
You need to use an underscore instead of a dot, for example
cipher string will work.DEFAULT:!TLSv1_1
You can verify that
doesn't work by executing the following::!TLSv1.1
(BigIP Bash shell).tmm --clientciphers 'DEFAULT:!TLSv1.1'
- Kevin_StewartEmployee
Good catch. ;)
- Hannes_Rapp_162Nacreous
You need to use an underscore instead of a dot, for example
cipher string will work.DEFAULT:!TLSv1_1
You can verify that
doesn't work by executing the following::!TLSv1.1
(BigIP Bash shell).tmm --clientciphers 'DEFAULT:!TLSv1.1'
- Kevin_StewartEmployee
Good catch. ;)
Use this instead to not use TLSv1.1 and TLSv1 --> 'DEFAULT:!TLSv1:!TLSv1_1'