Configuration: TLS

ON THIS PAGE

About the Page

Configuration: TLS Settings allows you to adjust the TLS settings for the OpenVPN protocol (tunnel) and the Access Server web server. OpenSSL is the SSL library used when the Access Server is deployed.

An Overview of the TLS Settings page:

tls settings

TLS options for OpenVPN

To configure the TLS options for the OpenVPN protocol, click the toggle to select the minimum TLS protocol to use. By default, TLS 1.2 is used:

TLS options for OpenVPN

tls options for VPN server

Not all OpenVPN clients support the minimum TLS protocols setting which may result in some clients not being able to connect to the server. This requires computers with these Connect Clients to reinstall the software in order to get the updated security settings. Changing these settings here may also restart the web server. Make sure to refresh your browser to reload the page after the server restarts.

TLS options for Web Server

To choose between TLS options for the Access Server web server, toggle between the different protocol versions. TLS 1.1 is the default. Toggling these settings will also cause the server to restart. Again, refresh your browser if you have changed the settings.

TLS options for Web Server

web server tls options

Saving the Configurations

All settings changed in the Access Server must be saved or else your changes will be erased.

To submit all changed settings, be sure to press the Save Settings button.

save settings

This button is located at the bottom of the page.

Once you have successfully updated the settings, the following message will display.

Press the Update Running Server button to apply the changes immediately. You will also need to refresh your web browser. If you choose not to update the running server, the changes will be applied after you have logged out.

Summary

Configuration: TLS Settings provides a method to change the lowest minimum TLS protocol for both the OpenVPN tunnel and the Web Server. It is a very simple interface which prevents the Access Server and Web Server from having multiple minimum protocols. The next section will discuss how you can adjust the network settings of the Access Server.