We are using the last version (6.2.3) and just possible to disable TLS 1.0 and 1.1.
Our objetive is use only TLS 1.3. Our security scan identifies that is weak ciphers inside TLS 1.2, like below:
TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d) WEAK 256
TLS_RSA_WITH_AES_256_CBC_SHA256 (0x3d) WEAK 256
TLS_RSA_WITH_AES_256_CBC_SHA (0x35) WEAK 256
TLS_RSA_WITH_AES_128_GCM_SHA256 (0x9c) WEAK 128
TLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c) WEAK 128
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f) WEAK
We already changed in Security options to only high ciphers like:
TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256
But, the scan shows the weak ciphers above.
How is the correct way to disable definetly tls 1.2?