TLS Protocol Update

The PCoIP Connection Manager and Security Gateway 20.10 can run on RHEL/CentOS 8. As a result of running on RHEL/CentOS 8, the TLS protocol versions enabled will be TLS 1.2 and TLS 1.3. If you encounter the following error message regarding TLS 1.1 you may need to enable TLS 1.1: "javax.net.ssl.SSLHandshakeException: Server chose TLSv1, but that protocol version is not enabled or not supported by the client".

If you want to enable TLS 1.1 you need to update the CentOS security policy to LEGACY.

To view the current security policy run the following command:

update-crypto-policies --show

To set the policy to LEGACY run the following command:

update-crypto-policies --set LEGACY