How can I eliminate the "TLS Server Supports TLS version 1.0" vulnerability from my PAM Server?

Article Id: 129888
Status: Published
Updated On: 01-07-2020 18:07
Products:
CA Privileged Access Manager - Cloakware Password Authority (PA) , PAM SAFENET LUNA HSM , CA Privileged Access Manager (PAM) , CA Privileged Access Manager (PAM)
Issue/Introduction:

After running a vulnerability scanning tool, the resulting report shows that my PAM server is affected by the "TLS Server Supports TLS version 1.0" vulnerability.

How can I eliminate the "TLS Server Supports TLS version 1.0" vulnerability from my PAM Server?

Environment:

PAM Server 3.x

Resolution:

Open the PAM Client and verify if the setting 'TLS v1.0/1.1 Connection Allowed' is Enabled or Disabled in the 'Access' tab of the 'Configuration / Security / Access" pane.




After disabling it and rerunning the test the "TLS Server Supports TLS version 1.0" vulnerability did no longer appear.

Additional Information:

See also: TLS Server Supports TLS version 1.0

insert_drive_file 1558688505572000129888_sktwi1f5rjvs16fmo.jpeg
arrow_downward Download