I am trying to update the SQL credentials in Agent Handler located in DMZ. But when I reached page where I am suppose to input the ePO server information page, I failed to continue from there as shown below.
The OS for both ePO and Agent Handler are harden according to CIS standard.
When I was troubleshooting, I saw it is actually a cipher issue indicated in Event Viewer as shown below.
Did some network dumping and realized that cipher suites used by Agent Handler Setup does not contain what is required.
Hope someone is able to help me with this issue. Thanks.
Solved! Go to Solution.
The article you mentioned is the way of moving forward KB91296 , it has the required ciphers and if not present on the Agent handler's OS then we describe a way how to enable TLS 1.2 and the required ciphers using the IISCrypto tool
No cipher suites are disabled and IISCrypto shows also no cipher suites being disabled.
The network dump shows that those are the only ciphers provided by Agent Handler installation.
Have checked all possible solution to solve this but no avail.
A wireshark capture will show ciphers epo and db are presenting. If all the settings in IIScrypto are grayed out, that indicates it is using default settings. DB reqiures at least one of KB91304 and for apache to tomcat, KB91296.
Was my reply helpful?
If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?