Yealink Forums
Disabling TLS 1.1 & 1.3 on Yealink SIP-T31P - Printable Version

+- Yealink Forums (http://forum.yealink.com/forum)
+-- Forum: IP Phone Series (/forumdisplay.php?fid=4)
+--- Forum: General topics (/forumdisplay.php?fid=15)
+--- Thread: Disabling TLS 1.1 & 1.3 on Yealink SIP-T31P (/showthread.php?tid=46025)



Disabling TLS 1.1 & 1.3 on Yealink SIP-T31P - Lilpombo - 08-23-2022 11:07 PM

Hello, everyone

So, how can I disabled TLSv1.1 and TLSv1.2 on my Yealink Phones? I want to use just TLSv1.3...


I added this line on the .CFG arquive:

static.security.default_ssl_method = 5

Number 5 activates TLSv1.2; I made a Nessus scan and the Telephone appointed vulnerabilities on TLSv1.1 and TLSv1.2 ciphers. So, the telephone is using the TLS 1.1, 1.2 and 1.3 too;


But... It doesn't works, the telephone didn't disabled TLSv1.1 for using only TLSv1.2; So, now I want do disable both... How can I do this? I didn't find this in the documentation... Huh


RE: Disabling TLS 1.1 & 1.3 on Yealink SIP-T31P - Lilpombo - 08-25-2022 09:22 PM

Hi,

Someone can help me with this?


RE: Disabling TLS 1.1 & 1.3 on Yealink SIP-T31P - complex1 - 08-25-2022 11:09 PM

(08-25-2022 09:22 PM)Lilpombo Wrote:  Hi,

Someone can help me with this?

Hi,

As far as I know, it is not possible to disable the TLS ciphers.
Parameter static.security.default_ssl_method = 6 selects the TLS 1.3 version to use for handshake negotiation between the phone and server.