Client requested protocol tlsv1 is not enabled or supported in server context

Usman · December 9, 2020, 11:07am

Hi,

we are using ELK stack version 7.9.0 , when we try to connect logstash with elastic it give us error .
'client requested protocol tlsv1 is not enabled or supported in server context'

when we specify following parameter in elasticsearch.yml file it works fine.

xpack.security.http.ssl.supported_protocols: [ "TLSv1.2", "TLSv1.1", "TLSv1" ]

we donot want to use TLSv1 protocol but without above parameter our connection of logstash with elastic never establish.

could someone suggest alternative approach as how can we avoid TLS1 in our case.

Thanks,

Usman · December 9, 2020, 11:09am

we are disabling TLSv1, TLSv1.1 only.

i.e. jdk.tls.disabledAlgorithms= SSLv2Hello, SSLv3, TLSv1, TLSv1.1

while commenting below in elasticsearch.yml
#xpack.security.http.ssl.supported_protocols: [ "TLSv1.2", "TLSv1.1", "TLSv1" ]

But After disabling logstash is unable to connect with ES.

Usman · December 14, 2020, 11:45am

Hi,
Anyone is updating this thread ?

system · January 11, 2021, 11:45am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.