How to Enable TLS Version in mod_ssl on Apache Webserver

Share It!

mod_ssl combines the flexibility of Apache with the security of OpenSSL. mod_ssl is an Apache module that provides SSL v2/v3 and TLS v1 support for the Apache HTTP Server.

TLS Version in mod_ssl

SSL 2.0 and SSL 3.0 having lots of known vulnerabilities like POODLE (CVE-2014-3566), that’s why latest browsers has removed supported to these vulnerable protocols.

In this article we will explain how to enable TLS Version in mod_ssl on Apache Webserver.

Install mod_ssl

Run below command to install mod_ssl.

# yum install mod_ssl

Enable TLS 1.2 Only

Edit Apache ssl configuration file on your server and add following settings.

# vim /etc/httpd/conf.d/ssl.conf
SSLProtocol -all +TLSv1.2

Enable TLS 1.1 and 1.2 Both

Same as TLS 1.2, If we want to enable both version follow as same.

# vim /etc/httpd/conf.d/ssl.conf
SSLProtocol -all +TLSv1.1 +TLSv1.2

After changes in your configuration file, restart Apache service to reflect the changes.

# service httpd restart

Enjoy it!

No Responses

Leave a Reply

Your email address will not be published.