Planning Analytics 2.0.5
Microsoft Windows 2016 server
A security audit list that the access to TM1 Admin service is not enough secure. Port 5498 and 5898 show this;
Negotiated with the following insecure cipher suites:
TLS 1.0 ciphers:
TLS 1.1 ciphers:
Enable support for at least one of the ciphers listed below:
Inside the Cognos Configuration the TM1 Admin server value for Support pre-TLS v1.2 clients are set to TRUE, this should be set to False to solve above issue.
Change to FALSE,
At the restart of the TM1 Admin Server, all the TM1 running instances will be restarted, this can take time. Do this at a planned date.
More information about ports:
This can also help secure the TM1 Admin service;
|TM1 Admin Server Certificate Version||Specifies which version of the TM1 generated certificates to use.
By default, the 1024-bit encryption version of the TM1 generated certificates is used.
Change this property only if you want to use the new 2048-bit encryption version of the default certificates. You can use the new version with old and new TM1 clients, but you must configure the clients to use the new certificate authority file.