Solved: Ciphers vs Guest access

lcaruso · ‎02-02-2020

I wanted to determine before implementing if these recommended changes will cause problems for Guest clients using an older technology. Please comment if you know. Thanks.

config network secureweb sslv3 disable [disables SSLv3]
config network secureweb cipher-option sslv2 disable [disables SSLv2]
config network secureweb cipher-option rc4-preference disable
config network secureweb cipher-option high enable [enables TLSv1.2]

And disable http and enable https for the portal

Scott Fella · ‎02-02-2020

Maybe you can review this and make your decision what you want to support or not.

https://www.ssllabs.com/ssltest/clients.html

-Scott
*** Please rate helpful posts ***

View solution in original post

Scott Fella · ‎02-02-2020

There are other sites that try to document the supported cipher on browsers and OS. I don’t think you will have to look around and decide.

https://cheatsheetseries.owasp.org/cheatsheets/TLS_Cipher_String_Cheat_Sheet.html

-Scott
*** Please rate helpful posts ***

View solution in original post

Scott Fella · ‎02-02-2020

Maybe you can review this and make your decision what you want to support or not.

https://www.ssllabs.com/ssltest/clients.html

-Scott
*** Please rate helpful posts ***

Scott Fella · ‎02-02-2020

There are other sites that try to document the supported cipher on browsers and OS. I don’t think you will have to look around and decide.

https://cheatsheetseries.owasp.org/cheatsheets/TLS_Cipher_String_Cheat_Sheet.html

-Scott
*** Please rate helpful posts ***