How do I enable TLS1.2 only and disable weak ssl ciphers in Kibana 7.0?

Our InfoSec scans report that Kibana 7.0 service is supporting weak protocols and weak cipher suites. I am trying to find how to disable TLS 1.1 and below protocols and remove specific ciphers from Kibana service.

Any help you could provide will be greatly appreciated.

Hi, welcome to the forums! Kibana supports the setting server.ssl.supportedProtocols:

Please note that TLS 1.3 is only supported in the very latest Kibana, 7.11.0

1 Like

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.