AAA, NAC, Guest Access & BYOD

Is it possible to disable TLSv1.1 for different traffics towards ClearPass?
Q:

Is it possible to disable TLSv1.1 for different traffics towards ClearPass?



A:

TLS(Transport Layer Security) version 1.1 can be disable for Radius and  Admin GUI traffic towards ClearPass server from the version 6.6.3 and higher.

 

A new cluster-wide parameter "Disable TLSv1.1 support" is available under Administrator >> Server Manager >> Server Configuration >> Cluster-Wide Parameters >> General to disable TLSv1.1 support.

 

Set the "Disable TLSv1.1.support" to one of the values below.

None - TLSv1.1 Enabled (Default)

Admin - Disable for ClearPass Admin GUI access.

Radius - Disable for Radius.

All - Disable for both Radius and Admin GUI access.

 

Version History
Revision #:
2 of 2
Last update:
‎12-28-2016 06:56 AM
Updated by:
 
Labels (1)
Contributors
Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.