10-17-2018 02:16 AM
Hi Guys,
In customer VA/PT is it found that TLS_FALLBACK_SCSV extension is not enabled in ISE 2.3 P4.
Now Cisco is asked to enable this.
I don't know how to enable this, however, i am sure it will be enabled with ROOT access, which i don't see practice and recommendation from Cisco.
If we go into ROOT console and enable this what will be downside of it.
If it is enabled in ROOT access, will Cisco provide support in future if any issue comes up around it.
Please advise...
Regards,
Jay
Solved! Go to Solution.
10-17-2018 07:40 AM
Any root access changes needs to be worked through TAC. Please create TAC SR regarding the issue.
10-17-2018 07:40 AM
Any root access changes needs to be worked through TAC. Please create TAC SR regarding the issue.
10-21-2018 03:02 AM
I agreed with Hosuk that this should be handled through Cisco TAC. Please ask the customer to provide detailed info how TLS_FALLBACK_SCSV found not enabled in ISE so TAC may verify and escalate, if needed.
All the CVEs associated with POODLE vulnerability have been resolved by fixing CSCur29078 in ISE 1.2 Patch 13 and ISE 1.3 FCS.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide