question

anthony.green avatar image
anthony.green asked

TLS1.0 / TLS 1.1 error when browsing from secured hardware

Getting an issue when browsing ASK from a CIS hardened desktop with the latest version of Edge or Chrome. This is due to Ask using TLS1.0 or TLS.1.1 which it will not support any more and wants Ask to use TLS1.2 or later.

Any plans to upgrade to latest versions of TLS?

"Your connection isn't secure

This site uses an outdated security configuration that might expose your personal information when it's sent to this site (for example, passwords, messages, or credit cards).

NET:ERR_SSL_OBSOLETE_VERSION

The connection used to load this site is TLS 1.0 or TLS 1.1, which is outdated and will be turned off in the future. When these are turned off, you wont be able to load the site. The server should use TLS 1.2 or later"

Pressing the continue button results in a round trip back to the error as the hardened browser wants TLS1.2 and wont continue.

ssltls
10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

DaveC avatar image
DaveC answered

This should now be resolved that the new build of the site is live.

10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

DaveC avatar image
DaveC answered

Hi Anthony,

We're in the middle of the process at the moment (working on it literally this second), but it requires a complete upgrade of the site platform and all associated QA to make sure it's all behaving correctly on the other side. Hopefully it won't be too long before it's completed.

10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Magnus Ahlkvist avatar image
Magnus Ahlkvist answered

How are we doing with this? Still getting stopped, and have to click "Advanced" to be able to continue to site with Edge.

Why complete upgrade btw - which certificate is used shouldn't have too much to with the software running the site, should it?

10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

DaveC avatar image
DaveC answered

It's with the platform provider now - UAT was signed off last week, so hopefully the deployment will be soon.

I don't know why a cert change requires a platform upgrade, but when we asked about it separately to that work we were told by Answerhub it was the only way it was possible for this platform.

10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.