AnsweredAssumed Answered

EFT Cipher suite not showing up in scan

Question asked by Sean Wasta on Apr 28, 2020
Latest reply on Apr 28, 2020 by Keith Shaw

I am running EFT Enterprise by Globalscape on a 2016 Server OS. I get an A+ from the Qualys scan at this URL (https://exfer01.jp.ftitechnology.com) however for some reason the following two ciphers do not get picked up even though they are enabled on the server OS and inside the EFT application.

 

  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

 

As you can see from the screenshot, these four cipher suites are enabled, yet the scan only shows 2 of the 4. I have verified everything is enabled at the OS level using IISCrypto. My problem is some 2012 server running Internet Explorer 11 can't connect to this site without these two ciphers being available. Any suggestions would be appreciated. 

 

Outcomes