TLS

Discussion in '3CX Phone System - General' started by that1guy, Mar 2, 2018.

Thread Status:
Not open for further replies.
  1. that1guy

    Joined:
    Jul 27, 2017
    Messages:
    42
    Likes Received:
    1
    Greetings,

    I am getting flagged for using TLS 1.0 by PCI Compliance scans for one of my clients. We are using v15.5 SP3, which I thought uses TLS by default. Is there a way to disable the use of TLS 1.0 in favor of TLS 1.1 or 1.2?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. schmork

    Joined:
    Dec 20, 2017
    Messages:
    7
    Likes Received:
    7
    I don't have a test server to try this on but normally with nginx you would change the line in the nginx.conf:
    ssl_protocols TLSv1.2 TLSv1.1 TLSv1;
    and just remove the v1 and v1.1 items

    This line isn't in the conf file for 3cx. Also I don't know if it would break something in the system or not but you could try on a test server to add that line and start the server.
     
Thread Status:
Not open for further replies.