As a
temporary workaround, if you can't change the configuration on the other server, you can upgrade to ePO 5.10 with TLS 1.0 enabled.
CAUTION: McAfee strongly discourages enabling TLS 1.0 in ePO 5.10, because doing so reduces the security posture of your ePO server. This workaround is intended for temporary use. Use it only as a
last resort until you can upgrade other servers in the environment to versions that work with a TLS 1.1 or 1.2 connection.
Start the ePO 5.10 install or upgrade with the
DISABLETLSV1=0 switch. The command line is:
\Setup.exe DISABLETLSV1=0
NOTE: The system property -Djdk.tls.client.protocols=TLSv1,TLSv1.1,TLSv1.2" is appended to the installer and Java Options in the Windows Registry, and enables the following:
- TLSv1 ePO SQL Server
- Registered Servers for SQL Server
- MySQL
- PostgreSQL
- LDAP servers