TLS upgrade from 1.0 to 1.2 on CA SAM servers

Document ID : KB000013961
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

Transport Layer Security (TLS) with CA SAM

Question:

To fix TLS 1.0 vulnerability on CA SAM server, we required to upgrade TLS 1.0 to TLS 1.2. Is there any connectivity issue between application and database. 

Environment:
All-
Answer:

The best response is to disable SSL entirely and migrate to a more modern encryption protocol, which at the time of publication is a minimum of TLS v1.1, although entities are strongly encouraged to consider TLS v1.2.

As CA SAM does not support any explicit encryption, this has no effect on connection from/to the tool as long as the unencrypted connection is still possible.