How do I configure to get TLSv1.0 in openssl 3.x #22752
-
I'm trying to connect to SQL Server 2008R2(TLS1.0) with aspnet 8 docker(mcr.microsoft.com/dotnet/aspnet:8.0), but got expcetion A connection was successfully established with the server, but then an error occurred during the pre-login handshake. (provider: SSL Provider, error: 31 - Encryption(ssl/tls) handshake failed) but it is working on mcr.microsoft.com/dotnet/aspnet:7.0. Just add I've read the file openssl.cnf,try the new version cfg setting, but not worked:
How do I configure to get results? Thanks |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
I assume your config file has the line Additionally, the SHA1 algorithm is not allowed in the default OpenSSL security level because it is considered insecure. TLSv1.1 and below require the use of SHA1 so to use those protocol versions you need to reduce the default security level.
|
Beta Was this translation helpful? Give feedback.
I assume your config file has the line
openssl_conf = openssl_init
near the top somewhere? That is necessary for it to work.Additionally, the SHA1 algorithm is not allowed in the default OpenSSL security level because it is considered insecure. TLSv1.1 and below require the use of SHA1 so to use those protocol versions you need to reduce the default security level.