Add configuration to set minimum TLS version to 1.2 - Githubissues

cisagov / ansible-role-openvpn

Ansible role to install an OpenVPN server and configure it to authenticate users certificates against FreeIPA.

Creative Commons Zero v1.0 Universal

8 stars 2 forks source link

Add configuration to set minimum TLS version to 1.2 #22

Closed felddy closed 4 years ago

felddy commented 4 years ago

🗣 Description

Add min-tls-version configuration to OpenVPN's configuration file.

💭 Motivation and Context

Prevent usage of deprecated TLS versions. Fixes: https://github.com/cisagov/cool-system/issues/66

🧪 Testing

📷 Screenshots (if appropriate)

🚥 Types of Changes

[ ] Bug fix (non-breaking change which fixes an issue)
[x] New feature (non-breaking change which adds functionality)
[ ] Breaking change (causes existing functionality to change)

✅ Checklist

[x] My code follows the code style of this project.
[ ] My change requires a change to the documentation.
[ ] I have updated the documentation accordingly.
[x] I have read the CONTRIBUTING document.
[ ] I have added tests to cover my changes.
[x] All new and existing tests passed.