Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2351
Views
0
Helpful
4
Replies

Prime Infrastructure 2.2/3.0 TLS

dtekaccount10
Level 1
Level 1

‎11-13-2015 02:17 AM

Hi All,

Please consult if it is possible to disable TLSv1 and enable TLSv1.1 or TLSv1.2 on Prime Infrastructure 2.2/3.0.

McAfee Vulnerability Manager 7.5 reports CVE-2011-3389 "(2588513) TLS-SSL Server Blockwise Chosen-Boundary Browser Weakness".

Thank you in advance.

Best Regards,

Anton Vrublevskiy

Labels:
0 Helpful
4 Replies 4

marce1000
VIP
VIP

‎11-17-2015 05:11 AM

 - Presumably not as I couldn't find any ssl.conf on a prime system using the root-shell capabilities; if it's important guess you have to make your case@TAC.

M.



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !
0 Helpful

Not applicable
In response to marce1000

‎06-01-2017 09:16 AM

Any chance you have instructions even though they are unsupported?  I already modified the Tomcat config, but that does not seem to be the right place.

Or even just a bit more into where to look.

0 Helpful

MIKKO JARVELA
Level 1
Level 1

‎11-25-2015 05:46 AM

That can be done, but be warned. Once you start to tweak PI server, you loose Health Manager and some other processes, which still are using TLSv1 internally (within PI server) - I did that and wasn't happy about results :(

So better to wait that Cisco provides updates & patches for that.

That same reason prevents integration of Prime 3.0 and ISE 2.0 as ISE rejects TLSv1 handshake from Prime.

/Mikko

0 Helpful

nagarajan.velappan11
Level 1
Level 1
In response to MIKKO JARVELA

‎07-13-2020 05:51 AM

Hi Mikko,

 

How you did that ?

 

Regards,

Bhaskar Das

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents