How can I eliminate the "TLS Server Supports TLS version 1.0" vulnerability from my PAM Server?
book
Article ID: 129888
calendar_today
Updated On:
Products
CA Privileged Access Manager - Cloakware Password Authority (PA)PAM SAFENET LUNA HSMCA Privileged Access Manager (PAM)
Issue/Introduction
After running a vulnerability scanning tool, the resulting report shows that my PAM server is affected by the "TLS Server Supports TLS version 1.0" vulnerability.
How can I eliminate the "TLS Server Supports TLS version 1.0" vulnerability from my PAM Server?
Environment
PAM Server 3.x
Resolution
Open the PAM Client and verify if the setting 'TLS v1.0/1.1 Connection Allowed' is Enabled or Disabled in the 'Access' tab of the 'Configuration / Security / Access" pane.
After disabling it and rerunning the test the "TLS Server Supports TLS version 1.0" vulnerability did no longer appear.