Support Center > Search Results > SecureKnowledge Details
When trying to disable SSLv3.0 and TLSv1.0 for the GAiA Portal, the page does not load Technical Level
Symptoms
  • When trying to disable SSLv3.0 & TLSv1.0 for the GAIA Portal via /web/templates/httpd-ssl.conf.templ with the following command: "SSLProtocol -ALL +TLSv1.1", the results is the page not loading.
Cause

The GAiA Portal only supports TLSv1.0 prior to installing the TLSv1.2 integration.


Solution
  1. Install General Availability take 286 or higher of the R77.30 Jumbo Hotfix on the GAiA appliance. 
  2. Update /web/templates/httpd-ssl.conf.templ to present the SSL protocol that you wish to use.

 

Workaround

Get the Gaia portal to be registered as a Multi-portal client.

You need to change the port used (from 443) for a moment and then change it back. After this, you will see the Gaia portal under the multi-portal. 

  • Move the GAIA portal off port 443 (for example, 443 ->4434) and install policy
  • Then move the GAIA portal back to 443 and install policy. If another portal is also enabled, the GAIA portal will be then managed by Multi-portal.

This can be configured by running 'mpclient list' via Expert mode and looking for "SecurePlatform" in the list of portal.

You would then be able to apply:

sk102989 - Check Point response to the POODLE Bites vulnerability (CVE-2014-3566)  - Multi-Portal 

This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment