• Dashboards and Reporting Resources - Start Here

    Welcome to Dashboards and Reporting   Welcome to our Dashboards and Reporting space.  Here we will begin to collaboratively and constructively collect relevant legacy ...
    DMFezzaReed
    last modified by DMFezzaReed
  • My Rate is F very poor, how to improve this

    My Rate is F very poor, how to improve this. How to improve my rate to A. Below is the summary of my website SSL Security.
    Mety Soriano
    last modified by Mety Soriano
  • Remove scan result from Google search results

    Hello, everybody. I would like to have some search results removed by Google. Is that possible? Because I have made the mistake of using https://www.dev.ssllabs.com/ instead of https://ww.ssllabs.com.   When I ...
    Luca Nussbaumen
    last modified by Luca Nussbaumen
  • SSL Server Test-Weak Ciphers

    Below is the CipherSuite which is configured on Apache-SSL.conf, When I am running SSL Server Test we are getting the result as we are using weak ciphers. Can someone please help how to disable the weak cipheres, ...
    Teja Mannava
    last modified by Teja Mannava
  • Public methods available in Groovy Script for invocation on different objects

    av_tagging groovy
    DMFezzaReed
    last modified by DMFezzaReed
  • viewMyClient test serving insecure content

    The page @ Qualys SSL Labs - Projects / SSL Client Test    Gives an insecure warning, because on line #86 it uses:   <iframe src="http://plaintext.ssllabs.com/plaintext/frame.html" class="display-no...
    Ron K
    last modified by Ron K
  • API Gateway - Application API Docs (Swagger)

    Module Version API Gateway Documentation FIM 1 https://gateway.qg1.apps.qualys.com/apidocs/fim/v1   FIM 2 https://gateway.qg1.apps.qualys.com/apidocs/fim/v2 ITAM/AI 1 https://gateway.qg1.apps.qualys.com/apid...
    Laura Seletos
    last modified by Laura Seletos
  • Question about clearing entry

    Can Qualys clear an entry in the SSLLABS test? I added HSTS and I cannot get it to update its scan results. I made the same change to a number of other domains and it the refresh scan detected just fine. It won't upda...
    Robert Glus
    last modified by Robert Glus
  • Grade capped to "B" due to weak DH parameter

    Hi,   Ssltest reports "This server supports weak Diffie-Hellman (DH) key exchange parameters. Grade capped to B". Certificate is backed by BigIP F5, which is limited to 1024 DH primes but is not subject to the ...
    Olivier BOËL
    last modified by Olivier BOËL
  • Cipher Suites to Grading Mapping

    Does SSLLabs provide a mapping on cipher suites with its corresponding grades? I'd like to get a list of cipher suites that SSLLabs tests for along with the grade SSLLabs would give that specific cipher suite.
    jim toby
    last modified by jim toby
  • SSL Labs: Read This First

    Bugs and Known Issues You'll find a record of known issues on this page. Please report new problems here. Please don't use the issue tracker to report suggestions about grading changes.   Commonly Requested Featu...
    Ivan Ristić
    last modified by Robert Dell'Immagine
  • Signature Verification Failed Vulnerability - Sectigo CA "USERTrust ECC Certification Authority"

    Do the qualys scanners have the new Sectigo CA "USERTrust ECC Certification Authority"  in the trusted store? We are getting vulnerability from Qualys scan reports stating that it's unable to get&#...
    John Soares
    last modified by John Soares
  • Product Feature Requests

    What is a Feature Request? A Feature Request is any suggestion for an enhancement to Qualys software. Feature Requests are not a contractual obligation for Qualys to develop the suggestion or to develop the request as...
    DMFezzaReed
    last modified by Robert Dell'Immagine
  • SSL website scan via VM or WAS?

    Hi Everyone,    I am new to Qualys and getting through first hurdles - clean slate, slowly building up my asset collection.    I am trying to scan several domains and report supported SSL/TL...
    Tom S
    last modified by Tom S
  • No grading on failed HPKP check

    I'm using the ssllabs api to monitor the gradings of our certificates via powershell, see below. But on sites that have a failed HPKP check i don't get a grading object back in the json, while if i check the same sit...
    ronald van den berg
    last modified by ronald van den berg
  • How to speed up the scanning process?

    Hello, I'm a Ph.D. student in U.S. I am using ssllabs-scan to download certificates of a bunch of domains.  Recently I found that around 20 mins are needed for scanning a single domain which is too slow for me....
    Zhiju Yang
    last modified by Zhiju Yang
  • Problems with renegotiation testing on SSL Labs reports

    SSL Labs server reports such as https ://www.ssllabs.com/ssltest/analyze.html?d=buy.itunes.apple.com (sorry, link brken to make the URL readable) have *two* links to more info about secure renegotiation at https://co...
    Andrew Aitchison
    last modified by Andrew Aitchison
  • Cipher Suite for have A+ score

    Hi, some years ago I set up my server with a good Cipher Suite that actually continue score A+ on SSL LABS but i see there are 4 weak configuration. I want remove this and replace with a good one but don't know what c...
    |Mark|
    last modified by |Mark|
  • SSL Certificate related vulnerabilities.

    SSL Certificate - Subject Common Name Does Not Match Server FQDN QID: 38170 System: windows server 2012 Cert. used: wildcard from Symantec RESULTS: Certificate #0 CN=*.....com,OU=....,O=.....,L=...,C=... (*......com) ...
    Md. Imran Hosan
    last modified by Md. Imran Hosan
  • Why SSLLAB gives TLS 1.0 enabled when it is not?

    Hello all, I have two services with the same configuration running in Azure as an App Service. We recently changed the SSL configuration to use 1.1 as minimum version for TLS. After the change, when running the SSLLAB...
    Moisés García
    last modified by Moisés García