TRIAL REQUEST A DEMO LOGIN

SSLv2/SSLv3 should be disabled

Impact area

Security

Severity

High

Affected element

System property

Rule ID

SN-0181

Impact

When active, outbound connections from an instance are forced to use TLS instead of SSL. Setting this property forces the MID Server to use TLS when making outbound connections, such as REST and SOAP requests.

Remediation

It is recommended to set this property "glide.outbound.sslv3.disabled" to true to enforce the use if TLS during all outbound connections from ServiceNow instance.

Time to fix

15 min

References

This rule is linked to Common Weakness Enumeration CWE-327 Use of a Broken or Risky Cryptographic Algorithm.

What's here


Related content

ServiceNow rules

System property rules

Common Weakness Enumeration (CWE™)

ServiceNow: High Security Settings





Last modified on Oct 13, 2020
Copyright © QualityClouds 2021