TLS Protocol versions support on Citrix Command Center

TLS Protocol versions support on Citrix Command Center

book

Article ID: CTX208111

calendar_today

Updated On:

Description

Command Center now supports TLSv1.1 and TLSv1.2 protocols from the version 5.2.44.11

To enable TLSv1.1 and TLSv1.2 protocols

On the Administration tab, navigate to Settings > SSL Settings and select the Enable TLSv1.1 or Enable TLSv1.2 option.(unlike earlier builds where the file server.xml is edited on Windows/Linux servers: C:\Citrix\Command Center\Apache\Tomcat\conf\server.xml)


User-added image

Enable TLS 1.1 and TLS 1.2

User-added image

Note: Please note that the SSLv3 protocol is no longer supported.

Alert: The TLS1.2 version is enabled on the Command Center SSL settings by default. Discovery of few devices may fail due to the mismatch of the TLS protocol version. In one of the instance the discovery of a Netscaler SDX device is failing with the following message: " Failed to login to Netscaler SDX Platform with Existing credentials". This issue was observed because TLS settings in CC are not in sync with SDX TLS settings. In order to resolve the issue enable or disable the require option on the Command Center and restart the CC service after the change.

Issue/Introduction

This article will explain what TLS versions are available on Command Center (CC)

Additional Information

Document for the new supported features on the version 5.2.44.11: https://docs.citrix.com/en-us/command-center/5-2/about-this-command-center-release/whats-new.html