NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Alan_Bolster's avatar
Alan_Bolster
Aspirant
Mar 11, 2016

M7100-24X - No support for TLS 1.2 on management connections?

New poster here so hi everyone. :smileyhappy: Just wanted run a question by the experts here.

 

My company has just aquired a wildcard certificate from Digicert which we're planning to use for HTTPS management connections to each of our network devices and various servers. After some trial and error, I managed to get the certificate installed on one of our M7100-24X switches and I can make a properly secured connection to its web console. However, I noticed in the HTTPS settings and in the subsequent connection information that the most up-to-date cipher suite it can use is TLS 1.0.

 

As we are in the process of making our organisation PCI DSS compliant, I would like to be able to use TLS 1.2. Have any of you got experience in this area? Does anyone know whether it is possible to enable TLS 1.2 on Netgear switches? Pehaps Netgear are aware that this needs addressing and are working on it for a future firmware release. I've opened a support ticket but any advice from the community would be helpful in the meantime.

 

Thanks.

certificate
https
M7100-24X
PCI DSS
Security
switch
TLS 1.0
TLS 1.2

3 Replies

  • JohnRo's avatar
    JohnRo
    NETGEAR Employee Retired
    Mar 16, 2016

    Hello Alan_Bolster, 

     

    Welcome to the community! 

     

    You may have to contact our Support Team and file a feature request. We also have an Idea Exchange Board where you can post these kind of request, our engineers are monitoring that board and if an idea gets enough kudos (up), it will likely be implemented. 

     

    Thanks, 

    • Alan_Bolster's avatar
      Alan_Bolster
      Aspirant
      Mar 18, 2016

      Hi JohnRo,

       

      Thanks for your response. As it happens, I already have a support ticket open for this. I was just hoping to get some advice from the community while I wait to hear back.

       

      This morning I had an opportunity to apply the latest firmware to one of our M7100 switches and it seems that they do now support TLS1.2. The same goes for the M5300 line of switches. Many of our other switches which are now on the latest firmware still do not support higher than TLS 1.0, though. I'll be interested to hear what the developers have to say about future releases.

      • JohnRo's avatar
        JohnRo
        NETGEAR Employee Retired
        Mar 18, 2016

        Hello Alan_Bolster, 

         

        I was able to look up your case and talked to the technician handling the case, it appears that we may need to forward the request to our engineers. Hopefully, someone from the community can share if they are experiencing the same issue. 

         

        Thanks, 

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More