How can I eliminate the "TLS/SSL Server is enabling the BEAST attack" vulnerability from my PAM Server?

Document ID : KB000129892
Last Modified Date : 22/03/2019
Show Technical Document Details
Introduction:
After running a vulnerability scanning tool, the resulting report shows that my PAM server is affected by the "TLS/SSL Server is enabling the BEAST attack" vulnerability.
Question:
How can I eliminate the "TLS/SSL Server is enabling the BEAST attack" vulnerability from my PAM Server?
Environment:
PAM Server 3.x
Answer:
Open the PAM Client and verify if the setting 'TLS v1.0/1.1 Connection Allowed' is Enabled or Disabled in the 'Access' tab of the 'Configuration / Security / Access" pane.



User-added image


After disabling it and rerunning the test the "TLS/SSL Server is enabling the BEAST attack" vulnerability did no longer appear.
Additional Information:
See also: TLS/SSL Server is enabling the BEAST attack