Disabling TLS 1.1 on NX Server/ NX Witness
AnsweredHi,
A vulnerability scan of identified our NX Server accepting TLS 1.1 on port 7001.
How can we disable TLS 1.1 in NX Server?
-
Hi Tony,
Please follow the steps to disable TLS1.1 on your server:
- Windows:
1. Open the registry and visit the path
HKEY_LOCAL_MACHINE\SOFTWARE\Network Optix\Network Optix Media Server
2. Add a string value allowedSslVersions and put the value TLSv1.2
3. Restart the Nx mediaserver service
- Linux:
1. Go to the path /opt/networkoptix/mediaserver/etc/
2. Open the mediaserver.conf and add one line allowedSslVersions=tls1_2
3. Restart the Nx mediaserver service
Thank you.
JIRA-VMS-35135
- Windows:
-
Hi Campbell Steven and Tony,
We've submitted the internal task to evaluate the default supported version of TLS (disable TLS v1.1 and support TLS v1.3). If there's any change made, it will be listed in the release note in the future version.
At the moment, please use the above method to turn it off.Thanks for your feedback.
Please sign in to leave a comment.
Comments
4 comments