The option to select the minimum TLS version to be supported.

The options are:

• TLSv1.0

• TLSv1.1

• TLSv1.2

• TLSv1.3

If Minimum TLS Version is set to TLSv1.0 or TLSv1.1, System Manager displays the following message in the Notifications widget:

Warning! TLS <1.0/1.1> is enabled. For increased security, it is recommended that the Minimum TLS Version be set to TLS 1.2 or higher if these protocol levels can be supported in your configuration.

For the new System Manager deployment, the minimum TLS version is set to 1.2.

From Release 10.1, SSLv3 is not supported.

On the earlier release system, if the minimum TLS version is configured to:

• SSLv3, System Manager sets the value to TLSv1.0 after upgrading to Release 10.1 and later.

• Any other TLS version value, System Manager retains the TLS version after upgrading to Release 10.1 and later.

For a military hardened system, the minimum TLS version is set to 1.2.

The option to select the validation type for certificate revocation.

The option to select the certificate revocation type.

This option cannot be changed if Certificate Revocation Validation is set to NONE.

The option to select the certificate revocation type.

This option can be edited if Revocation Type is set to BOTH.

The option to select the checking method for the certificate.

This option cannot be changed if Certificate Revocation Validation is set to NONE.

The option to enable or disable certificate-based authentication for the System Manager user interface.

The option to enable or disable certificate-based authentication for other TLS ports.

The option to enable or disable extended hostname validation.

Saves and commits any changes made in the security configuration with an automatic restart of the Application server.

Cancels any changes made and reverts the security configuration settings to the last saved setting.