Created on
01-06-2025
05:47 AM
Edited on
05-16-2025
01:38 AM
By
Jean-Philippe_P
Description | This article describes how to enable TLS 1.3 and the appropriate ciphers for Persistent Agent in FortiNAC. |
Scope | FortiNAC, FortiNAC-F. |
Solution |
Since Persistent Agent v7.6.0 requires TLS 1.3, it is mandatory to enable TLS 1.3 and appropriate ciphers in FortiNAC when Persistent Agent v7.6.0 is in use.
Go to System -> Settings -> Persistent Agent -> Transport Configuration and 'right-click' on the 'TLS Service Configuration' that is already in use by the Persistent Agent service.
Uncheck 'Automatically Update Chophers And Protocols on Upgrade', select the 'TLS Protocols' dropdown box, and select TLS 1.3.
Select the 'Ciphers' dropdown box and select the required Ciphers for TLS 1.3. If any former version of the Persistent Agent is also in use, select Ciphers for TLS 1.2 to avoid any SSL/TLS handshake issue with any Persistent Agent versions.
Go to System -> Certificate Management -> Select Persistent Agent, and restart the Persistent Agent Service.
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.