How to use TLS 1.2/1.3 with CSAT Pro


Product Name

CIS CSAT Pro - SecureSuite CIS Controls Self Assessment Tool

Product Version

All

Date

Oct 26, 2022



 

Problem

I would like to use TLS 1.2/1.3 with CSAT Pro but do not see an option how to enable it.

 

Solution

This is an open Feature Enhancement Request that Engineering is currently working on implementing into CSAT Pro. In the meantime, you can use TLS 1.2 by adding a line into the csat-config.yml file. See below:

Update the config file like this with the new JKS and TLS settings:

C:\Program Files\CSAT_Pro\conf\csat-config.yml
...
server:
port: 443
ssl:
enabled: true
key-store: C:\Program Files\CSAT_Pro/certificates/cis-cat-pro-new.jks
key-store-password: "******"
key-alias: "cis-cat-pro"
key-password: "******"
protocol: tls
enabled-protocols: TLSv1.2,TLSv1.3

If CSAT Pro no longer works after adding the enabled-protocols line, please place the csat-config.yml file in an online YAML validator to confirm the formatting is correct.

Keywords; TLS 1.2 1.3 CSAT Pro

Content by Label


Copyright © 2022

Center for Internet Security®