TLS Configuration: Choose TLS Ciphers and Versions in Privileged Remote Access Cloud

The tab header in /appliance which is highlighting the Security :: TLS Configuration option.

Security :: TLS Configuration

Choose if TLSv1.1 and TLSv1 should be enabled or disabled. For optimum security, the BeyondTrust web interface always defaults to TLSv1.2 before switching to TLSv1.1 or TLSv1.0.

Be aware, some older browsers may not support TLSv1.2 and TLSv1.3. If you disable one or more of the older security protocols and intend to access your administrative interface from an older browser which does not support the security protocols you have enabled, BeyondTrust does not allow you to log in. Enabling TLSv1.1 and TLSv1.0 allows you to connect to your web interface from any computer, regardless of browser version.

This setting primarily affects connections to the web interface of your Secure Remote Access Appliance. The support tunnel between your computer and your customer's computer defaults to using TLSv1.2 regardless of any other security protocols you have enabled.

Select which cipher suites should be enabled or disabled on your appliance. Drag and drop cipher suites to change the order of preference. Changes to cipher suites do not take effect until the Save button is clicked.