Article ID: 335

Category: Collector Service

Applies to: 3.2 and higher

Updated: 2018-11-08

Since EventSentry utilizes the TLS capabilities of the OS, the version of TLS being used between the collector and the agents depends both on the version of Windows the collector is running on, and the version of Windows the agent is running on.

By default, client (agent) and server (collector) will negotiate the following TLS parameters illustrated in the matrix below. You can also review event 910 (on the agent) to verify which TLS parameters were negotiated.

AgentCollector |
Windows Server 2008 R2Windows 7 |
Windows Server 2012Windows 8 |
Windows Server 2012 R2Windows 8.1 |
Windows Server 2016Windows 10 |

WindowsServer 2008 R2 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |

Windows Server 2012 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 2048 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |

Windows Server 2012 R2 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
TBD | Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: RSA Key exchange strength: 256 |

Windows Server 2016 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: DH ephemeral Key exchange strength: 2048 |
TBD | Protocol: TLS1.2 Cipher: AES Cipher strength: 128 Hash: SHA256 Hash strength: 256 Key exchange: ECDH ephemeral RSA Key exchange strength: 256 |
Protocol: TLS1.2 Cipher: AES Cipher strength: 256 Hash: SHA384 Hash strength: 384 Key exchange: ECDH ephemeral RSA Key exchange strength: 255 |