Will the HTTP SSL Certificate Expiry probe be updated to handle servers with TLS 1.0 disabled?
Article Comments
The PCI SSC and NIST have determined that the TLSv1.0 protocol no longer meets the definition of strong cryptography. Because of this we can no longer use PRTG to monitor certificate expiration dates for our websites that process sensitive information that must have TLS 1.0 disabled. Please build support for TLS 1.1 or 1.2 so these monitors can continue to be used.
Aug, 2015 - Permalink
Hello, we will have a new version of this sensor, which supports TLS 1.2, ready with version 15.x.19 of PRTG. Please bear with us, as soon as there is a stable version release, with the number '19' as the third version digit, the new certificate expiry sensor should be included.
Aug, 2015 - Permalink
We need to monitor expiration for certificates utilizing only TLS 1.2. We recently updated our PRTG to 15.4.20.4590, which would appear to be a newer version than the aforementioned 15.x.19, but there is still no TLS1.2 support. Can we please get confirmation of when TLS 1.2 will be supported for this sensor?
Nov, 2015 - Permalink
Hello,
Thank you for the KB-Post. Currently this is not possible, we will put this on the wish list though, and will see if there are more requests from other users for this. Please bear with us.
best regards.
Jan, 2015 - Permalink