Section 18.1.3.3. TLS Version

18.1.3.3. TLS Version

Protocols TLSv1.2 and higher are supported. SSLv2, SSLv3 and TLSv1.0 are not permitted due to security issues.

The TLS version can be configured for each interface (HFA/ SIP/ HTTPS) separately in WBM menu:

Configuration > Security > single-click on TLS Ciphers for HFA or SIP or HTTPS

The TLS version, the key agreement method for HFA and SIP in case of TLSv1.2, the encryption algorithm as well as the AES operation mode can be configured. For more information about TLSv1.2, see https://www.ietf.org/rfc/rfc5246.txt.

IMPORTANT:

After changing and saving TLS HFA settings, the gateway must be rebooted for the changes to take effect.

Figure 372. SPE configuration TLS version

Starting with V11R0, TLS version 1.3 is supported on the VoIP Interfaces (HFA and SIP).

INFO:

TLS1.3 ciphers cannot be configured (fix settings).

${DocTitle}, ID: ${DocID}

© 03/2026 Mitel Networks Corporation. All rights reserved. Mitel and the Mitel logo are trademark(s) of Mitel Networks Corporation. Unify and associated marks are trademarks of Unify Software and Solutions GmbH & Co. KG. All other trademarks herein are the property of their respective owners.