Which version of TLS does EventSentry use between the collector and its agents?
Article ID: 335
Category: Collector Service
Applies to: 3.2 and higher
Updated: 2021-10-21
Since EventSentry utilizes the TLS capabilities of the OS, the version of TLS being used between the collector and the agents depends both on the version of Windows the collector is running on, and the version of Windows the agent is running on.
By default, client (agent) and server (collector) will negotiate the following TLS parameters illustrated in the matrix below. You can also review event 910 (on the agent) to verify which TLS parameters were negotiated.
| Agent Collector |
Windows Server 2008 R2 Windows 7 |
Windows Server 2012 Windows 8 |
Windows Server 2012 R2 Windows 8.1 |
Windows Server 2016 Windows 10 |
| Windows Server 2008 R2 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
| Windows Server 2012 | Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
| Windows Server 2012 R2 | Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
TBD | Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 256 |
| Windows Server 2016 | Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: DH ephemeral Key exchange strength: 2048 |
TBD | Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: ECDH ephemeral RSA Key exchange strength: 255 |
