Remote Support
Remote Access
Remote Work
Remote Monitoring and Management
Remote Presentation
Standard
Business
EnterpriseResolving Weak Diffie-Hellman Cipher SSL Problems
If you are experiencing the following error when attempting to open a HTTPS page on your SimpleHelp server:
Server has a weak, ephemeral Diffie-Hellman public key
or if you receive any error related to SSL ciphers, then it is possible that a supported cipher is no longer secure and is being blocked by your browser. In order to prevent this cipher from being used you can instruct SimpleHelp to no longer use this cipher.
Server has a weak, ephemeral Diffie-Hellman public key
or if you receive any error related to SSL ciphers, then it is possible that a supported cipher is no longer secure and is being blocked by your browser. In order to prevent this cipher from being used you can instruct SimpleHelp to no longer use this cipher.
Removing Ciphers from SimpleHelp's Whitelist
SimpleHelp keeps a whitelist of supported SSL ciphers. To remove a cipher from the list you should do the following:
- Edit the file configuration/sslconfig/acceptedciphers
- Remove the line containing the cipher that is causing the problem. For the Diffie-Hellman public key error above, remove TLS_DHE_RSA_WITH_AES_128_CBC_SHA.
- Restart SimpleHelp so that the SSL engine will pick up the new list of accepted ciphers.
