cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
26289
Views
20
Helpful
5
Replies
Beginner

TLS 1.2 on ASA (Clientless SSL VPN)?

Hi there,

I would like to ask if the ASA5510 can support TLS 1.1 above?

On the ASDM it can only be chosen between SSLv3 or TLSv1.

When "Negotiate SSL V3", the Active-X plugin can not be loaded (IE 9 with supported SSL v3).

It seems that the plugin only works with TLSv1.

Is there some roadmap for the TLS1.1/1.2?

Thanks,

Norbert

Everyone's tags (6)
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted

9.3(x) supports TLS1.2

9.3(x) supports TLS1.2

View solution in original post

5 REPLIES 5
Highlighted
Contributor

TLS 1.2 on ASA (Clientless SSL VPN)?

Hey there,

ASA release 9.1 has OpenSSL 0.9 included which doesn't support TLS1.1 or 1.2

http://www.cisco.com/en/US/partner/docs/security/asa/asa91/license/open_source/open_source_lic_91.html

Michael Please rate all helpful posts
Highlighted
Contributor

The Partner Helpline told me

The Partner Helpline told me that TLS 1.2 is planned for 2015, but certainly not for the old 5510.

 

HTH

Michael Please rate all helpful posts
Highlighted

9.3(x) supports TLS1.2

9.3(x) supports TLS1.2

View solution in original post

Highlighted
Beginner

Hi, according to Cisco ASA

Hi,

 

according to Cisco ASA compatibility page, ASA5510 does not support 9.3(x). 

Is the page correct?

Highlighted
Beginner

Unfortunatelly yes,You have

Unfortunatelly yes,

You have to move to X-generation....