Submit a ticketCall us

ebook60.pngHow to be a Cisco® ASA ace

Our eBook, Thou Shalt Not Pass…I Think?! can help you overcome the challenges of monitoring and managing Cisco ASA firewalls.

Get your free eBook.

Home > Success Center > Orion Platform > Orion Documentation > TLS compatibility with Orion Platform products

TLS compatibility with Orion Platform products

Created by Alexandra.Nerpasova, last modified by Verwin Ubana on Apr 20, 2018

Views: 4,252 Votes: 14 Revisions: 55

 

Updated: December 5, 2017

Overview

This article details the versions of TLS supported by SolarWinds products, including which products are able to run on TLS 1.2 only. 

Environment

  • Orion Platform products
  • Other SolarWinds product, such as NTM

Detail

SolarWinds products running on the Orion Platform use TLS 1.0, 1.1, or 1.2, depending on the product.

 

Orion Platform 2016.2 added support for TLS 1.1 and 1.2, but not all products that install on Orion Platform 2016.2 support TLS 1.1 or 1.2. 

Starting with Orion Platform 2017.1, some SolarWinds Orion Platform products support running solely on TLS 1.2, with versions TLS 1.1 and TLS 1.0 disabled. Use the table below to see which products support running on only TLS 1.2 and which products also need TLS 1.1 enabled to work properly.

 

No version of any Orion Platform product prior to Orion Platform 2017.1 will run on TLS 1.2 only. Some legacy tools such as the Report Writer, Syslog Viewer, and Trap Viewer may require TLS 1.0.

 

Temporarily enable TLS 1.1 to install additional polling engines or additional web servers (Orion Platform 2017.1 and later)

To install an additional polling engine or additional web server for any product that runs on TLS 1.2 only, temporarily enable TLS 1.1 to complete the installation:

  1. Enable TLS 1.1.
  2. Install the additional poller or additional web server.
  3. After completing the installation, disable TLS 1.1 and continue using the product with only TLS 1.2 enabled.

TLS compatibility table

Use this table to see which products support running on only TLS 1.2 and which products also need TLS 1.1 enabled to work properly.

Product

TLS 1.0  from version TLS 1.1 
from version
TLS 1.2 from version

Works with only TLS 1.2 enabled?

Earliest version that supports TLS 1.2 only Notes

DPAIM

  11.0 11.0

Yes

11.0  
EOC   2.0 2.0 Yes 2.0  
IPAM   4.5 4.5 Yes 4.5  
NCM       Yes 7.6  
NPM   12.0.1 12.0.1 Yes 12.1  
NTA 4.2.1 No No No  N/A It Requires TLS 1.0 to be enabled.
NTM       No – Also needs TLS 1.1 enabled N/A  
Patch Manager     6.4 Yes 6.4  
SAM   6.3 6.3 Yes 6.5 SAM application polling is able to fall back to TLS 1.1 or  TLS 1.0 for HTTPS website polling and SSL Certificate monitoring if the later version is not working properly in your environment.
SRM       Yes 6.4

When negotiating the connections to arrays, the protocols are used in descending order: TLS 1.2, TLS 1.1, TLS 1.0 and SSL 3.0. The protocol used depends on your arrays, the versions of those arrays and what they support.

SRM with SRM Profiler integration does not support TLS 1.1 or TLS 1.2. 

Toolset       No N/A  
UDT   3.3 3.3 Yes 3.3  
VMAN     8.0 Yes 8.0  
VNQM   4.2.2 4.4 Yes 4.4  
WPM   2.2.1 2.2.1 No – Also needs TLS 1.1 enabled N/A For monitored websites, you can enable TLS 1.1 and 1.2 for the WPM player.

 

 

This content is maintained by the Technical Content group.

To suggest changes or provide comments, click the Leave feedback link to the right or send an email to infodev@solarwinds.com

Last modified

Tags

Classifications

Public