Yealink Forums
Disable SSL / TLS - Printable Version

+- Yealink Forums (http://forum.yealink.com/forum)
+-- Forum: IP Phone Series (/forumdisplay.php?fid=4)
+--- Forum: T4x Series (/forumdisplay.php?fid=31)
+--- Thread: Disable SSL / TLS (/showthread.php?tid=42142)



Disable SSL / TLS - jakes - 10-04-2018 02:22 PM

Hello all.
We have T48S, CP860 & CP960's. Is there a way to disable SSL 2.0 & 3.0 on these phones? Can it be done through provisioning?

Any insight would be helpful. See attached network security scan results to one of our phones.

Thank you.


RE: Disable SSL / TLS - Mamoulian - 04-14-2020 07:18 AM

I had a similiar situation. In my case it help that I added this line to the CFG-Config

sip.tls_cipher_list = AES:!ADH:!LOW:!EXPORT:!NULL
security.tls_cipher_list = AES:!ADH:!LOW:!EXPORT:!NULL
static.security.default_ssl_method = 5


Parameter static.security.default_ssl_method <y0000000000xx>.cfg
Description It configures the TLS version the IP phone uses to authenticate with the server.
Permitted
Values
0-TLS 1.0 only
3-SSL V23 (automatic negotiation with the server. The phone starts with TLS1.2 for negotiation.)
4-TLS 1.1 only
5-TLS 1.2 only
Default 3


RE: Disable SSL / TLS - arjun.nagaraja - 06-05-2024 12:27 AM

Hi,

I added the below lines to disable TLS 1.1 and TLS 1.2
security.default_ssl_method=5

security.web_server.ssl_method=2

security.server_ssl_method=2