Hi Folks,
Can I configure Foreman so that SSL/TLS 1.0/1.1 is disabled for security
reasons? I want to use TLS 1.2 exclusively.
Many thanks in advance
Michael
We don't have any custom option in the installer. However, after
install, you need to add this option to Apache's configuration:
SSLProtocol TLSv1.2
Foreman's SSL configuration is under /etc/httpd/conf.d/ssl.conf
and Puppet's SSL configuration is under /etc/httpd/conf.d/25-puppet.conf.
Restart httpd (systemctl restart httpd or service httpd restart) and you
should be good to go.
Best,
···
On 02/16, Michael Ehrig wrote: > Hi Folks, > Can I configure Foreman so that SSL/TLS 1.0/1.1 is disabled for security > reasons? I want to use TLS 1.2 exclusively. > Many thanks in advance > Michael–
Daniel Lobato Garcia
@dLobatog
blog.daniellobato.me
daniellobato.me
GPG: http://keys.gnupg.net/pks/lookup?op=get&search=0x7A92D6DD38D6DE30
Keybase: https://keybase.io/elobato