VMware Cloud Community
abugeja
Hot Shot
Hot Shot
Jump to solution

How to force TLS 1.2 for vCenter 6.0 & ESXi 6

Hi,

We are planning to upgrade a secure environment and a requirement is to only use TLS 1.2. I have been reading 6.0 U2 and that supports 1.0, 1.1 and 1.2. How do I disable 1.0 and 1.1 then only ensure 1.2 is used for this virtual environment.

Thanks

1 Solution

Accepted Solutions
admin
Immortal
Immortal
Jump to solution

Sorry to jump on this old thread.

vSphere 6.0U3 supports disabling TLS 1.0/1.1 .

Details here :

vSphere and TLS 1.2 - VMware vSphere Blog

and

Managing TLS protocol configuration for vSphere 6.0 Update 3 (2148819) | VMware KB

Hope that helps!

Hari

View solution in original post

9 Replies
rcporto
Leadership
Leadership
Jump to solution

Any chance you upgrade to vSphere 6.5 and vCenter 6.5 to take advantage of TLS Reconfiguration Utility? See: Managing TLS protocol configuration for vSphere 6.5 (2147469) | VMware KB

---

Richardson Porto
Senior Infrastructure Specialist
LinkedIn: http://linkedin.com/in/richardsonporto
Reply
0 Kudos
abugeja
Hot Shot
Hot Shot
Jump to solution

Hi,

Thanks for the reply but not upgrading to 6.5 at the moment. Are there any options with 6.0? If 6.0 has 1.0, 1.1 and 1.2 how do you know when each one is used or not.

Thanks.

Reply
0 Kudos
Techie01
Hot Shot
Hot Shot
Jump to solution

This KB Supported TLS protocols for vSphere 6.0 Update 1b (2136185) | VMware KB lists the ports and protocols supported

Reply
0 Kudos
vThinkBeyondVM
VMware Employee
VMware Employee
Jump to solution

I think, best way to get help on this is to raise a support request with VMware. They can guide you further.


----------------------------------------------------------------
Thanks & Regards
Vikas, VCP70, MCTS on AD, SCJP6.0, VCF, vSphere with Tanzu specialist.
https://vThinkBeyondVM.com/about
-----------------------------------------------------------------
Disclaimer: Any views or opinions expressed here are strictly my own. I am solely responsible for all content published here. Content published here is not read, reviewed or approved in advance by VMware and does not necessarily represent or reflect the views or opinions of VMware.

Reply
0 Kudos
abugeja
Hot Shot
Hot Shot
Jump to solution

thanks for everyones input. I will raise a call with VMware to confirm

Reply
0 Kudos
admin
Immortal
Immortal
Jump to solution

Sorry to jump on this old thread.

vSphere 6.0U3 supports disabling TLS 1.0/1.1 .

Details here :

vSphere and TLS 1.2 - VMware vSphere Blog

and

Managing TLS protocol configuration for vSphere 6.0 Update 3 (2148819) | VMware KB

Hope that helps!

Hari

abugeja
Hot Shot
Hot Shot
Jump to solution

Excellent. Thanks for the reply.

Reply
0 Kudos
idontneedacommu
Contributor
Contributor
Jump to solution

Well, I've tried to disable TLSv1.0 and TLSv1.1 with the TlsConfigurator as described in Managing TLS protocol configuration for vSphere 6.0 Update 3 (2148819) | VMware KB. Unfortunately the TlsConfigurator utillity crashes every time I try to reconfigure the settings.

I raised a support request but no luck, yet. I would apreciate it if the TlsConfigurator would be fixed, soon.

Reply
0 Kudos
Jitu211003
Hot Shot
Hot Shot
Jump to solution

Hi Richardson,

Please guide me how to enable TLS 1.2 on ESXi 5.0 & Vcenter server 5.0.

Both ESXi & Vcneter are at its latest build.

Thanks

Reply
0 Kudos