OCI server flagged with security scan "Qualys ID 38863 - Weak TLS Key" for TLS service port 443
Applies to
- OnCommand Insight (OCI)
- Data Warehouse (DWH)
Issue
- Qualys security scans flag vulnerability for Weak TLS key on port 443, which is used by SANscreen service.
- Microsoft recommended fix is to adjust registry setting for IIS to increase DHE key length from 1024 to 2048, but servers still show up in security scans