Previous page Section 3.10.11. EAPTLS_Protocols Section 3.10.12. EAPTLS_Ciphers (171 / 1691)   Table of Contents Section 3.10.13. EAPTLS_SecurityLevel Next page

3.10.12. EAPTLS_Ciphers Previous topic Parent topic Child topic Next topic

This parameter specifies which subset of cipher suites is permissible for TLS-based EAP types. It uses the standard OpenSSL string format. The default is DEFAULT:!EXPORT:!LOW.
# Exclude cipher suites using RC4 too
EAPTLS_Ciphers DEFAULT:!EXPORT:!LOW:!RC4
When SSL library supports security levels, a level can be set for each configuration clause together with cipher string. For more information about security levels, see Section 3.10.13. EAPTLS_SecurityLevel
# System default level 2 is too strict for this module
EAPTLS_Ciphers DEFAULT:!EXPORT:!LOW@SECLEVEL=1
Previous page Section 3.10.11. EAPTLS_Protocols Section 3.10.12. EAPTLS_Ciphers (171 / 1691)   Table of Contents Section 3.10.13. EAPTLS_SecurityLevel Next page