Skip to content
Vectel
Support/Security

An audit tool flags TLS 1.0 or 1.1 on our servers

TLS 1.0/1.1 deprecated, browsers and M365 already refuse. Sometimes lingers on internal services. Disable, unless hard legacy.

Try this first

  1. 1Inventory endpoints with SSL Labs or testssl.sh. Caveat: SSL Labs only tests publicly reachable endpoints. Internal services (file servers, databases, intranet, IoT) are not covered, inventory those separately with nmap "ssl-enum-ciphers" or testssl.sh against the internal IP range.
  2. 2Web servers: TLS 1.2 minimum, TLS 1.3 preferred
  3. 3Database/SMB protocols separately, often forgotten
  4. 4Legacy system: isolate instead of expose

When to bring us in

Legacy ERP or medical that can't do TLS 1.2, plan replacement.

See also

None of the above fits?

Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.

Who are you?

For the AI question we need your email and company, so we can follow up if the AI gets stuck, and to prevent abuse.

Limited to 2 questions per hour and 5 per day, kept lean so the AI stays useful. For more, contacting us directly works better for you and us.

Or skip the DIY entirely

Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.

Bring us inHow Managed IT works