Skip to main content
mturic
Staff & Editor
mturic
Staff & Editor
January 2, 2025

Technical Tip: Adjusting TLS versions for FortiPAM GUI access

  • January 2, 2025
  • 0 replies
  • 498 views
Description This article describes how the minimum and maximum TLS settings for FortiPAM GUI access can be adjusted.
Scope FortiPAM 1.x.
Solution

FortiPAM uses a VIP object for GUI access which has its own TLS security settings. The VIP object's TLS settings need to be adjusted via the CLI.

 

For example, to set the minimum TLS version:

 

config firewall vip
    edit "fortipam_vip"
        set ssl-min-version tls-1.2
    end

 

Example of how to set the maximum TLS version:

config firewall vip
    edit "fortipam_vip"
        set ssl-max-version tls-1.2
    end

 

FortiPAM as of version up to 1.5.0 supports the following SSL min/max versions:

 

set ssl-max-version <SSL_version>

ssl-3.0  -> SSL 3.0
tls-1.0  -> TLS 1.0

tls-1.1  -> TLS 1.1

tls-1.2  -> TLS 1.2

tls-1.3  -> TLS 1.3

 

Related articles:

Disable TLS 1.0 and TLS 1.1 in FortiPAM 
Terms & ConditionsAccessibility statement