Is there a way to customize the SSL Security sensor so that it warns or errors depending on the level of security/compatibility I want to use ?
My workplace tolerates TLS v1.0 and we would like the sensor to not warn, as we have a couple hundred of these sensors, they make our warnings less readable, we do not intend to upgrade in the short term, but we'd still like to catch any server still running SSLv1/2/3.
I know I could do it with a custom lookup table, but is there a built-in way to do that ?
Thanks in advance.
Article Comments
Attention: This article is a record of a conversation with the Paessler support team. The information in this conversation is not updated to preserve the historical record. As a result, some of the information or recommendations in this conversation might be out of date.
Hi there,
This is possible by changing the used lookup of the "TLS 1.0" channel. So please navigate to "Sensors > By Type > S... > SSL Security Check". On this site you can select all available sensors. If there are more than 50 sensors you can choose to display all available in the upper right corner of the table (Items: ...).
After you have selected all displayed sensors, or just the ones you want to edit, please click on the little wrench symbol on the left side of the table which will open the settings. In the settings windows please click on "Channel Settings", select the "TLS 1.0" channel, tick the "Value Lookup" option and set it to "prtg.standardlookups.sslsensor.tls" instead of "prtg.standardlookups.sslsensor.ssl".
This will not warn you about TLS1.0.
Best regards.
Apr, 2018 - Permalink