Solved: How to disable SSL Version 2 and 3 on Polycom HDX ...

Adriano · ‎08-17-2018

Hello guys,

Does anyone know how to disable SSL 2.0 / 3.0 on HDX 7000/8000 and Enable TLS 1.1 or higher instead?

Tks

mschulze · ‎08-20-2018

Hi @Adriano,

Which software version is installed on your HDX? HDX 3.0.0 onwards, support for EAP-TLS was added to the HDX systems.

It is not possible to force 1 specific protocol. The Radius server asks the endpoint for the credentials in a preferred method (e.g., EAP-MD5, EAP-PEAPv0 etc…). The HDX will respond using the protocol that is negotiated between itself and the switch/ Radius server.

Adriano · ‎08-20-2018

Hi,

I have polycom HDX 8000 and 7000, here is the versions:

HDX 8000 - realease 3.1.1.3 -36019

HDX 8000 - realease 3.1.5-5568

HDX 7000 - realease 3.1.5-5568

Is there a way to minimize that? I mean, we have a security company that help us to increase our security network level and they found this vulnerability on those polycom devices. (SSL Version 2 and 3 Protocol Detection).

Tks again for your reply.

SteffenBaierUK · ‎08-21-2018

Hello @Adriano,

welcome to the Polycom Community.

The Polycom Security Center => here <= lists various security information regarding the HDX so you must be on the very latest 3.1.12 to be protected.

Please ensure to provide some feedback if this reply has helped you so other users can profit from your experience.

Best Regards

Steffen Baier

Polycom Global Services

Please be aware:

The purpose of these forums is to allow community members collaborate and help each other.
Questions posted here do not follow Polycom’s SLA guidelines.
If you require assistance from Polycom technical support, please open a web service request or call us .

The above is necessary in order to track issue internally within Polycom.

You are welcome to post more questions or configuration or logs for other community members to look at but if your issue requires a fix via Polycom you must go via the official support structure.

Please ensure you always check the VoIP , Video Endpoint , Skype for Business , PSTN or RPM FAQ's

Please remember, if you see a post that helped you , and it answers your question, please mark it as an "Accept as Solution".

This forum reply or post is based upon my personal experience and does not reflect the opinion or view of my employer.
Polycom employee participation within this community is not mandatory and any post or FAQ article provided by myself is done either during my working hours or outside working hours, in my private time, and may be answered on weekends, bank holidays or personal holidays.

Adriano · ‎08-21-2018

Hi Steffen,

tks a lot for your reply, I will do that, just a question, to upgrade my HDX endpoints we need just go to Software Update and get the latest version right? sorry for this question because normally I used to upgrade just group series, never did with HDX if you could send me the steps will be very great.

Tks again.

How to disable SSL Version 2 and 3 on Polycom HDX 7000/8000 and Enable TLS 1.1 or higher instead

How to disable SSL Version 2 and 3 on Polycom HDX 7000/8000 and Enable TLS 1.1 or higher instead

Re: How to disable SSL Version 2 and 3 on Polycom HDX 7000/8000 and Enable TLS 1.1 or higher instead

Re: How to disable SSL Version 2 and 3 on Polycom HDX 7000/8000 and Enable TLS 1.1 or higher instead

Re: How to disable SSL Version 2 and 3 on Polycom HDX 7000/8000 and Enable TLS 1.1 or higher instead

Re: How to disable SSL Version 2 and 3 on Polycom HDX 7000/8000 and Enable TLS 1.1 or higher instead