Imperva Cyber Community

Hello Duc Dinh Minh,

Thank you for the post, you can refer the below article, which provides information on how to handle Unsupported Ciphers alert,

https://docs.imperva.com/bundle/z-kb-articles-km/page/76a348d3.html

------------------------------
Syed Noor Fazal
Product Support Engineer
------------------------------

Hi Syed,

I enabled TRP on imperva GW, but it has unsupport cipher TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

But in Imperva document, TRP supports it

https://docs.imperva.com/bundle/v14.7-waf-user-guide/page/534.htm

Are there any problems with 7680 bits RSA? below is SSLLab scan result.

Thank you.

------------------------------
Duc Dinh Minh
Security Engineer I
M.Tech Holdings Pte Ltd
ho chi minh
------------------------------


Original Message:
Sent: 07-28-2024 03:06
From: Syed Noor Fazal
Subject: Unsupport Cipher when using TRP mode

Hello Duc Dinh Minh,

Thank you for the post, you can refer the below article, which provides information on how to handle Unsupported Ciphers alert,

https://docs.imperva.com/bundle/z-kb-articles-km/page/76a348d3.html

------------------------------
Syed Noor Fazal
Product Support Engineer

Hello Duc Dinh Minh,

Even after selecting the desired ciphers on the MX, we are still getting unsupported ciphers, can you please check what ciphers is mentioned in the alerts and the same ciphers had been selected on the SG for this service.

Hi Syed,

I enabled TRP on imperva GW, but it has unsupport cipher TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

But in Imperva document, TRP supports it

https://docs.imperva.com/bundle/v14.7-waf-user-guide/page/534.htm

Are there any problems with 7680 bits RSA? below is SSLLab scan result.

Thank you.

------------------------------
Duc Dinh Minh
Security Engineer I
M.Tech Holdings Pte Ltd
ho chi minh


Original Message:
Sent: 07-28-2024 03:06
From: Syed Noor Fazal
Subject: Unsupport Cipher when using TRP mode

Hello Duc Dinh Minh,

Thank you for the post, you can refer the below article, which provides information on how to handle Unsupported Ciphers alert,

https://docs.imperva.com/bundle/z-kb-articles-km/page/76a348d3.html

------------------------------
Syed Noor Fazal
Product Support Engineer

Hi Syed,

Default cipher suite on Server (SSLLab scan)

Imperva has unsupport cipher alert "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" (TRP enabled)

The below is my customize cipher suite (disable all cipher has 7680 bits RSA)

Hello Duc Dinh Minh,

Even after selecting the desired ciphers on the MX, we are still getting unsupported ciphers, can you please check what ciphers is mentioned in the alerts and the same ciphers had been selected on the SG for this service.

Hi Syed,

I enabled TRP on imperva GW, but it has unsupport cipher TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

But in Imperva document, TRP supports it

https://docs.imperva.com/bundle/v14.7-waf-user-guide/page/534.htm

Are there any problems with 7680 bits RSA? below is SSLLab scan result.

Thank you.

------------------------------
Duc Dinh Minh
Security Engineer I
M.Tech Holdings Pte Ltd
ho chi minh


Original Message:
Sent: 07-28-2024 03:06
From: Syed Noor Fazal
Subject: Unsupport Cipher when using TRP mode

Hello Duc Dinh Minh,

Thank you for the post, you can refer the below article, which provides information on how to handle Unsupported Ciphers alert,

https://docs.imperva.com/bundle/z-kb-articles-km/page/76a348d3.html

------------------------------
Syed Noor Fazal
Product Support Engineer