05-13-2016 07:00 AM - edited 03-19-2019 11:06 AM
Hi,
Does anyone know how to disable SSL version 2 and 3 and enable TLS 1.1 or higher on Cisco UC apps such as CUCM, CUC, CUIMP and UCCX version 9.1? Not sure if this is possible or an upgrade is needed. TIA
05-17-2016 12:21 PM
As far as CUCM is concerned you can disable SSL v3 if you are on CUCM version 9.1.2.13900-7. This version of CUCM gives you the ability to monitor the status, disable or enable SSLv3 with the following commands:
utils webserver ssl [status | disable | enable]
To apply the full software fix for this vulnerability, it is recommended to move to 10.5.2 or later version.
TLS is only used when your cluster is in secure mode (also known as mixed mode). If you do not intend to change your cluster to secure or mixed mode then you don't need to worry about it. For CUCM 10.5 TLS version 1.2 is being used.
05-18-2016 12:02 PM
Thanks Shashank! So SSL v3 is disabled in 10.5.2 or later versions?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide