05-01-2019 10:10 PM - edited 07-05-2021 10:18 AM
Hello,
does anybody know if and how it's possible to configure a TLS version on a Lightweight Access Point 2600 (SW 8.3.143.0) when I want to enable an 802.1X Supplicant? I would like to disable TLS1.0 on the Radius server but have not found a way to force the Acess Point to get authenticated via TLS1.1/1.2.
When I disable TLS1.0 on the Radius, the AP failed to authenticate.
Thank you.
05-02-2019 03:07 AM
Dont know about Autonomous AP but if you are using WLC then you can use the command:
(WLC) >config network secureweb cipher-option high ?
disable Don't require TLSv1.2 for web admin and web auth.
enable Require TLSv1.2 for web admin and web auth.
(WLC) >config network secureweb cipher-option high enable
Once you enable, it should use only TLSv1.2
Regards
Dont forget to rate helpful posts
05-02-2019 03:13 AM
Thanks for your reply.
But as far as I know, these settings are related only to the HTTPS web server running on the WLC.
In my scenario, a TLS tunnel is established between the AP 802.1X supplicant and the Radius server.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide