AnsweredAssumed Answered

How to fix SSL/TLS Server supports TLSv1.0 on port 443

Question asked by Mina Medel on Jan 30, 2020

Dear All,

 

Please help me what is the correct config to fix this finding?

My Server is a WIndows 2012 with Apache Tomcat 7 and java 8.

 

I have already done the following:

 

Registry Keys: https://support.microsoft.com/en-ph/help/3140245/update-to-enable-tls-1-1-and-tls-1-2-as-default-secure-protocols-in-wi 

 

Apache server.xml:

<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
           maxThreads="200" scheme="https" secure="true"
           clientAuth="false" sslProtocol="TLSv1.2"
         

The finding is still there after scanning the server.

Thanks in advance

Outcomes