SSL/TLS Configuration: Choose SSL Ciphers and Versions

The tab header in /appliance which is highlighting the Security :: SSL/TLS Configuration option.


Security :: TLS Configuration

Choose if TLSv1.1 and/or TLSv1 should be enabled or disabled. For optimum security, the BeyondTrust web interface always defaults to TLSv1.2 before switching to TLSv1.1 or TLS1.0.

Be aware, some older browsers may not support TLSv1.2. If you disable one or more of the older security protocols and intend to access your administrative interface from an older browser which does not support the security protocols you have enabled, BeyondTrust does not allow you to log in. Enabling TLSv1.1 and TLSv1.0 allows you to connect to your web interface from any computer, regardless of browser version.

Note that this setting primarily affects connections to the web interface of your BeyondTrust Appliance. The support tunnel between your computer and your customer's computer defaults to using TLSv1.2 regardless of any other security protocols you have enabled.

Select which Ciphersuites should be enabled or disabled on your appliance. Drag and drop Ciphersuites to change the order of preference. Note that changes to Ciphersuites do not take effect until the Save button is clicked.