ConfD User Community

What TLS version does built-in NETCONF server support?

Hello,

As shown in the title, just want to know what TLS version do confd built-in SSH server? For confd7.4, does it support major features of TLS 1.2?

Hi,

TLS support is not provided by the SSH server. The TLS 1.3 and HTTP webserver is a separate component that serve the RESTCONF and JSON-RPC northbound interfaces.

For NETCONF over TLS you need to integrate with an external TLS server, for example with GnuTLS as shown in this “NETCONF over TLS with Mutual X.509 Authentication as an Alternative to SSH” demo: