What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general.

Learn more

PRTG Network Monitor

Intuitive to Use. Easy to manage.
More than 500,000 users rely on Paessler PRTG every day. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free Download

Top Tags


View all Tags

ssllabs rating B to A or A+

Votes:

0

Hi, In addition to another question I posted about security headers (https://kb.paessler.com/en/topic/83259-implement-security-headers) I would like to know if you have any advise to get an A+ on ssllabs.com At this point I'm having the following issues: - This server supports weak Diffie-Hellman (DH) key exchange parameters. Grade capped to B. - This server does not support Forward Secrecy with the reference browsers. Grade capped to B.

For more information: https://www.ssllabs.com/ssltest/analyze.html?

Thank you. Dennis

diffie-hellman forward-secrecy security ssllabs

Created on Jan 16, 2019 8:05:37 AM

Last change on Jan 17, 2019 9:19:52 AM by Torsten Lindner [Paessler Support]



3 Replies

Accepted Answer

Votes:

1

Hello Dennis,

Thank you for the KB-Post. Just to check, is your PRTG Server set to "High security (TLS 1.1, TLS 1.2)" in its Webserver-System Settings? You can create a longer DH key in order to get a higher security rating. Please refer to the following knowledge-base article for detailed information: How can I generate a DH key that is longer than the existing default key in PRTG?

best regards.

Created on Jan 16, 2019 1:17:45 PM by Torsten Lindner [Paessler Support]

Last change on Jan 16, 2019 1:18:28 PM by Torsten Lindner [Paessler Support]



Votes:

0

Hi Torsten, Thank you for this. I managed to bring the rating up to an A! Regards, Dennis

Created on Jan 17, 2019 9:11:34 AM



Votes:

0

Alright thanks for the update! (I removed your URL from the initial post.)

Created on Jan 17, 2019 9:19:34 AM by Torsten Lindner [Paessler Support]




Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.