A-grade SSL Listeners

Advanced Configuration of Axigen


The team at Qualys (https://www.qualys.com/) have developed a very complex SSL Tester (https://www.ssllabs.com/) that enable administrators to asses and properly configure their SSL listeners.

On the other hand, the team at Mozilla published a detailed article (https://wiki.mozilla.org/Security/Server_Side_TLS) on SSL cipher suits and their compatibility with the plethora of Web browsers available on the Internet.

Mandatory requirement: run the latest version of the Axigen server.

Axigen Recommended SSL Cipher Suite List

Recommended SSL Cipher Suite to be configured in SSL Listeners tab:

SSL Listeners Recommended Configurations
Allowed SSL Versions: TLS1.0, TLS1.1, and TLS1.2
Prefer server's cipher suite order: Checked
Use Ephemeral Key: Checked

SSLLabs Result