https://www.ejabberd.im/forum/25225/solved-only-tls-v12-enabled-no-tls-v1-or-11 en https://www.ejabberd.im/forum/25225/solved-only-tls-v12-enabled-no-tls-v1-or-11#comment-66281 <p>Just found out that my cipher suite only included TLSv1.2 compatible ciphers for my version of openssl. Now using <code>EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH</code> thanks to <noindex><a href="https://cipherli.st" title="https://cipherli.st" rel="nofollow" >https://cipherli.st</a></noindex> :)</p> Sun, 01 Nov 2015 19:31:53 +0000 h_peter comment 66281 at https://www.ejabberd.im https://www.ejabberd.im/forum/25225/solved-only-tls-v12-enabled-no-tls-v1-or-11#comment-66280 <p>Here is the relevant part of the configuration. I left the <code>protocol_options</code> at their default value.</p> <pre> listen: - port: 5222 module: ejabberd_c2s max_stanza_size: 65536 shaper: c2s_shaper access: c2s starttls: true starttls_required: true certfile: "[my certfile]" dhfile: "[my dhfile]" ciphers: "HIGH:!SHA1:!MD5:!RC4:!ADH" tls_compression: false ## Custom OpenSSL options ## # protocol_options: ## - "no_sslv3" ## - "no_tlsv1" </pre><p> Any ideas how to enable TLSv1 and/or TLSv1.1?</p> Sun, 01 Nov 2015 18:50:34 +0000 h_peter comment 66280 at https://www.ejabberd.im