ssl version ssl3.0 disable
Syntax
ssl version ssl3.0 disable
undo ssl version ssl3.0 disable
View
System view
Default level
2: System level
Description
Use ssl version ssl3.0 disable to disable SSL 3.0 on the device.
Use undo ssl version ssl3.0 disable restore the default.
By defaut, SSL 3.0 is disabled.
Use this command to disable SSL 3.0 on a device to enhance system security.
An SSL server supports only TLS 1.0 after SSL 3.0 is disabled.
An SSL client always uses SSL 3.0 if SSL 3.0 is specified for the client policy, whether you disable SSL 3.0 or not.
To ensure successful establishment of an SSL connection, do not disable SSL 3.0 on a device when the peer device only supports SSL 3.0. Hewlett Packard Enterprise recommends upgrading the peer device to support TLS 1.0 to improve security.
Examples
# Disable SSL 3.0 on the device.
<Sysname> system-view [Sysname] ssl version ssl3.0 disable