Forum Discussion
arpydays
Jun 17, 2015Nimbostratus
Hi,
it may be related to the below new feature in HF9, which added the ssl-protocol option to httpd. Are you syncing between 11.4.0 & 11.4.0HF10?
ID NumberDescription 485012-1 CVE-2014-3566: A new command has been added to TMSH that allows the administrator to configure the SSL protocol version that is supported on the management interface. Use this command to enable or disable support for specific protocol versions. For example, the following command will disable SSL protocol versions 2 and 3, leaving TLS versions 1, 1.1 and 1.2 enabled:
tmsh modify sys httpd { ssl-protocol "all -SSLv2 -SSLv3" }