I maintain several websites that use Certbot. The Qualys SSL Labs SSL Server Test has historically graded them as A+, but recently the grade has changed to B: "This server supports TLS 1.0 and TLS 1.1. Grade capped to B. " I could disable those protocols. For Apache, it would seem to require cha…

Disabling TLS 1.0 and TLS 1.1

rg305 February 10, 2020, 4:59pm 2

In Apache, search through your configuration files for "SSLProtocol".
Set it to:
SSLProtocol +TLSv1.2
[and restart Apache]

This change will not break certbot updates.

3 Likes

Topic		Replies	Views
How to disable TLS 1.0 and 1.1 and maintain certbot updates Help	1	1577	April 23, 2021
CertBot auto configuration for Apache - TLS 1.0 and 1.1 Help	2	2032	August 22, 2019
TLS 1.0/1.1 depreciation Help	3	709	April 13, 2020
Remove support for TLS 1.0, 1.1 in Nginx Server	12	10326	April 17, 2019
Disabling TLSv1 Help	4	866	June 17, 2020