Hi There, With strong-crypto enabled, I see that TLS V1.0 is still
enabled and I am failing PCI compliance scans because of this. Is there
any way to manually disable TLS V1.0 through the CLI? Currently running
V5.2 build 436 on Fortimail 60D. Cheers...
I've seen discussion in the forums about renewing a certificate and
coming across this message, but I don't immediately see anything about
when this is a new certificate being installed. I've acquired a signed
certificate from a trusted authority but...
Ok, I must be doing something fundamentally wrong then? I assume the
command would be 'set tls1_0 disable' ?? screenshot shows hyphen,
I did try with underscore as well and got the same error. Cheers - MT
You're right.... :\ just as I got your response I realised that I had
managed to delete the corresponding 'pending' request. Rookie mistake,
all good now! Thanks for your help! Cheers - MT
I am importing a cert, yes. The error message I get though is 'failure
to import csr response'. Not sure how to tell if the certificate has the
key to be honest? Basically, I generated the csr from the FortiMail unit
and submitted to the signing auth...