Which version of TLS does EventSentry use between the collector and its agents?

Article ID: 335
Category: Collector Service
Applies to: 3.2 and higher
Updated: 2018-11-08

Since EventSentry utilizes the TLS capabilities of the OS, the version of TLS being used between the collector and the agents depends both on the version of Windows the collector is running on, and the version of Windows the agent is running on.

By default, client (agent) and server (collector) will negotiate the following TLS parameters illustrated in the matrix below. You can also review event 910 (on the agent) to verify which TLS parameters were negotiated.

Agent
Collector
Windows Server 2008 R2
Windows 7
Windows Server 2012
Windows 8
Windows Server 2012 R2
Windows 8.1
Windows Server 2016
Windows 10
Windows
Server 2008 R2
Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: RSA
Key exchange strength: 2048
Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: RSA
Key exchange strength: 2048
Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: RSA
Key exchange strength: 2048
Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: RSA
Key exchange strength: 2048
Windows Server 2012 Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: RSA
Key exchange strength: 2048
Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: ECDH ephemeral RSA
Key exchange strength: 256
Protocol: TLS1.2
Cipher: AES
Cipher strength: 256
Hash: SHA384
Hash strength: 384
Key exchange: ECDH ephemeral RSA
Key exchange strength: 256
Protocol: TLS1.2
Cipher: AES
Cipher strength: 256
Hash: SHA384
Hash strength: 384
Key exchange: ECDH ephemeral RSA
Key exchange strength: 256
Windows Server 2012 R2 Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: ECDH ephemeral RSA
Key exchange strength: 256
TBD Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: ECDH ephemeral RSA
Key exchange strength: 256
Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: RSA
Key exchange strength: 256
Windows Server 2016 Protocol: TLS1.2
Cipher: AES
Cipher strength: 256
Hash: SHA384
Hash strength: 384
Key exchange: DH ephemeral
Key exchange strength: 2048
TBD Protocol: TLS1.2
Cipher: AES
Cipher strength: 128
Hash: SHA256
Hash strength: 256
Key exchange: ECDH ephemeral RSA
Key exchange strength: 256
Protocol: TLS1.2
Cipher: AES
Cipher strength: 256
Hash: SHA384
Hash strength: 384
Key exchange: ECDH ephemeral RSA
Key exchange strength: 255