I am running ESXi version 6. I have run the tlsreconfigurator and turned off TLS 1.0 and 1.1. I also turned off TLS 1.0 and 1.1 on port 5989. The hosts are still being flagged for this:
- Negotiated with the following insecure cipher suites:
- TLS 1.2 ciphers:
- TLS_RSA_WITH_AES_128_CBC_SHA
- TLS_RSA_WITH_AES_128_CBC_SHA256
- TLS_RSA_WITH_AES_128_GCM_SHA256
- TLS_RSA_WITH_AES_256_CBC_SHA
- TLS_RSA_WITH_AES_256_CBC_SHA256
- TLS_RSA_WITH_AES_256_GCM_SHA384
on ports 443 and 5989
How do I turn these off? This and the self signed certs are all I have left to fix.
Thank you for any help anyone can provide.
Matt