Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AMT Webserver supports TLS 1.0/1.1 #4756

Closed
MordyT opened this issue Nov 14, 2022 · 2 comments
Closed

AMT Webserver supports TLS 1.0/1.1 #4756

MordyT opened this issue Nov 14, 2022 · 2 comments
Assignees
@Ylianst
Labels
Fixed - Please Verify & Close question

Comments

@MordyT
Copy link
Contributor

MordyT commented Nov 14, 2022

Hello,
The "AMT Webserver" (example.fqdn.com:4433) supports TLS1.0 and TLS1.1
Is there a way to disable that support?
@Ylianst Ylianst self-assigned this Nov 15, 2022
@Ylianst
Copy link
Owner

Ylianst commented Nov 15, 2022

Yes, add the following line in the "settings" section of the config.json:

{
  "settings": {
    "mpshighsecurity": true
  }
}

Note that if you do that, older versions of Intel AMT may not be able to connect to the MPS server anymore. You can try updating the BIOS to the latest version of Intel AMT computers, but if the computer is old, it will not connect and it will not show any errors that CIRA fails to connect due to unsupported TLS version.

Hope this helps

@MordyT
Copy link
Contributor Author

MordyT commented Nov 15, 2022

This solves the issue. I didn't see it in docs or the sample config, but it's likely I just missed it.

@MordyT MordyT closed this as completed Nov 15, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Ylianst Ylianst

Labels
Fixed - Please Verify & Close question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@MordyT @Ylianst