OpenSSL

Last modified by Erik Bakker on 2024/03/19 14:48

On this page you will find the information needed for OpenSSL.
 
Should you have any questions, please contact academy@emagiz.com.

1. Information

Below, the steps taken are explained.

To verify if an endpoint supports TLS version 1.2 or TLS version 1.3 using OpenSSL on Windows, follow these steps:

  • Open a Command Prompt or PowerShell window:
    • Press Win + R, type cmd or powershell, and hit Enter.
  • Test TLS 1.2 Support:
    • Run the following command to check if the endpoint supports TLS 1.2:
      openssl s_client -connect <hostname>:<port> -t Isl 2
      Replace   with the actual hostname or IP address of the endpoint and <port> with the corresponding port (usually 443 for HTTPS).
  • Test TLS 1.3 Support:
    • Similarly, use the following command to verify TLS 1.3 support:
      openssl s_client -connect <hostname>:<port> -t1s1_3
  • Interpreting the Results:
    • If the handshake succeeds, the endpoint supports the specified TLS version.
    • If you encounter any errors or connection issues, it indicates that the endpoint does not support the requested TLS version.

Remember to replace   and with the actual details of the endpoint you want to test. OpenSSL provides detailed output, including certificate information, cipher suites, and protocol versions.
For additional options and details, refer to the official OpenSSL documentation.