TLS requirements of EventLog Analyzer Windows Agents

TLS requirements of EventLog Analyzer Windows Agents

Hello,


I’ve decided to post in this forum before opening a support ticket.  My question is – what are the TLS requirements of EventLog Analyzer Windows Agents?


In our environment, we have strict security requirements where we are to solely use TLS 1.2 with strong ciphers if possible.  I was able to manipulate the server.xml file ciphers list to just a few so that the web clients connect with only TLS 1.2 (and the server passes the security scans for using only TLS 1.2).  However, with that configuration the agent-based Windows machines are no longer able to communicate with the server.  Using the default server.xml configuration, the web clients and Windows agents connect, but this is inadequate due to the weak ciphers and use of TLS 1.0.  I need to know if TLS 1.0 is a requirement for agent connectivity – if so I can request an exception, however I would need to only use the strongest ciphers available (meaning, what should the “ciphers=” be set to in the server.xml file).  We are currently at Build 11.4 Number 11040.


 Thanks in advance

                New to ADSelfService Plus?