How to check TLS version support for a remote SSL URL by using openssl ?

How to check TLS version support for a remote SSL URL by using openssl ?

As recently many service providers are disabling the weak ciphers, TLSv1.2 becoming most trusted cipher at this moment compaing with TLSv1, TLSv1.1.

If you want to know more about these protocols, please refer
https://www.wolfssl.com/differences-between-ssl-and-tls-protocol-versions/

So if you are using services from any 3rd party/external service provider, then you want to verify the version of SSL protocol being used, then you can verify it with " openssl "

# openssl s_client -connect URL:PORT -tls1_2

URL: Is the URL for which you want to check SSL supported protocol.
Port: SSL port being used for that service.

If your service providing supporting that protocol then you will get certificate chain in the output else you will get handshake errors in the output.

Similarly you can verify support for other TLS protocols as well.

TLSv1

# openssl s_client -connect URL:PORT -tls1

TLSv1.1

# openssl s_client -connect URL:PORT -tls1_1

Hope this will help you.

Thanks
Raja

1 comment: