How can I eliminate the "TLS Server Supports TLS version 1.1" vulnerability from my PAM Server?

book

Article ID: 129818

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction

After running a vulnerability scanning tool, the resulting report shows that my PAM server is affected by the "TLS Server Supports TLS version 1.1" vulnerability.

How can I eliminate the "TLS Server Supports TLS version 1.1" vulnerability from my PAM Server?

Environment

PAM Server 3.x

Resolution

Open the PAM Client and verify if the setting 'TLS v1.0/1.1 Connection Allowed' is Enabled or Disabled in the 'Access' tab of the 'Configuration / Security / Access" pane.

 

<Please see attached file for image>

User-added image


After disabling it and rerunning the test the "TLS Server Supports TLS version 1.1" vulnerability did no longer appear.

Additional Information

See also: TLS Server Supports TLS version 1.1

Attachments

1558688496518000129818_sktwi1f5rjvs16fmn.jpeg get_app