Get help with Cisco Meeting Server and Cisco Meeting Apps

Find answers quickly with these FAQs.

» »

Why has Cisco changed the TLS version used by the Meeting Server?

Since the standardization of TLS 1.2 in 2008, continued analysis of older versions of TLS has shown significant weaknesses. This led to NIST advising in 2014 to move from TLS 1.0 to later versions of the protocol. Since then the deprecation of TLS 1.0 in products has started, with the PCI deadline for complete removal currently standing at June 2018.

Due to this, from version 2.3, the Meeting Server will use a minimum of TLS 1.2 and DTLS 1.2 for all services. If needed for interop with older software that has not implemented TLS 1.2, the minimum TLS version for SIP, LDAP and HTTPS, and the DTLS version can be configured to a lower version of the protocol. However, note that a future version of Meeting Server may completely remove TLS 1.0.

The minimum version is configured using the MMP command:

tls <service> min-tls-version <minimum version string>