Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Enabling TLS 1.2 support in Smart Protection Server 3.1

    • Updated:
    • 6 Jun 2017
    • Product/Version:
    • Smart Protection Server 3.1
    • Platform:
    • Virtual Appliance すべて
Summary

This article shows the steps when turning on TLS 1.2 support in Standalone Smart Protection Server (SPS) 3.1.

Details
Public
 
TLS 1.2 can only be enabled by turning on supported ciphers. Instructions below provide information of TLS 1.2 supported ciphers only.

Customers who adopted this instruction were advised to test compatibility with browsers and applications in staging environment first.

 
SPS version 3.1 or later is required.
  1. Log in to command shell.
  2. Execute the following command:

    vi /etc/lighttpd/lighttpd.conf

  3. Replace "var.ssl-cipher-list" with var.ssl-cipher-list = "TLSv1.2:!eNULL:!aNULL”.
  4. Save and exit vi interface.
  5. Execute the following command:

    service lighttpd restart

After applying the changes, SPS web console and Smart Scan will be limited to use TLS 1.2 only.

Known Issues

After applying this solution on SPS 3.1, it may display the following error in the SPS Summary page:

Computer Status

Meanwhile, there are corresponding logs viewable in Logs > Reputation Service Log:

Computer Status

This error does not affect the File Reputation Query function. Trend Micro will release a hot fix to address this UI error.

After applying this solution on SPS 3.1, Suspicious Object list synchronization fails and the following error message appears:

Settings

This issue is a spec limitation and it will be fixed in SPS 3.2

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1116708
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.