acsCipherSuite

Value Type

keyword-list

Accepted Values

auto | AES128-GCM-SHA256 | AES128-SHA | AES128-SHA256 | AES256-GCM-SHA384 | AES256-SHA | AES256-SHA256 | DHE-PSK-AES128-CBC-SHA | DHE-PSK-AES128-CBC-SHA256 | DHE-PSK-AES128-GCM-SHA256 | DHE-PSK-AES256-CBC-SHA | DHE-PSK-AES256-CBC-SHA384 | DHE-PSK-AES256-GCM-SHA384 | DHE-PSK-CHACHA20-POLY1305 | DHE-RSA-AES128-GCM-SHA256 | DHE-RSA-AES128-SHA | DHE-RSA-AES128-SHA256 | DHE-RSA-AES256-GCM-SHA384 | DHE-RSA-AES256-SHA | DHE-RSA-AES256-SHA256 | DHE-RSA-CHACHA20-POLY1305 | ECDHE-ECDSA-AES128-GCM-SHA256 | ECDHE-ECDSA-AES128-SHA | ECDHE-ECDSA-AES128-SHA256 | ECDHE-ECDSA-AES256-GCM-SHA384 | ECDHE-ECDSA-AES256-SHA | ECDHE-ECDSA-AES256-SHA384 | ECDHE-ECDSA-CHACHA20-POLY1305 | ECDHE-PSK-AES128-CBC-SHA | ECDHE-PSK-AES128-CBC-SHA256 | ECDHE-PSK-AES256-CBC-SHA | ECDHE-PSK-AES256-CBC-SHA384 | ECDHE-PSK-CHACHA20-POLY1305 | ECDHE-RSA-AES128-GCM-SHA256 | ECDHE-RSA-AES128-SHA | ECDHE-RSA-AES128-SHA256 | ECDHE-RSA-AES256-GCM-SHA384 | ECDHE-RSA-AES256-SHA | ECDHE-RSA-AES256-SHA384 | ECDHE-RSA-CHACHA20-POLY1305 | PSK-AES128-CBC-SHA | PSK-AES128-CBC-SHA256 | PSK-AES128-GCM-SHA256 | PSK-AES256-CBC-SHA | PSK-AES256-CBC-SHA384 | PSK-AES256-GCM-SHA384 | PSK-CHACHA20-POLY1305 | RSA-PSK-AES128-CBC-SHA | RSA-PSK-AES128-CBC-SHA256 | RSA-PSK-AES128-GCM-SHA256 | RSA-PSK-AES256-CBC-SHA | RSA-PSK-AES256-CBC-SHA384 | RSA-PSK-AES256-GCM-SHA384 | RSA-PSK-CHACHA20-POLY1305 | SRP-AES-128-CBC-SHA | SRP-AES-256-CBC-SHA | SRP-RSA-AES-128-CBC-SHA | SRP-RSA-AES-256-CBC-SHA | TLS_AES_128_GCM_SHA256 | TLS_AES_256_GCM_SHA384 | TLS_CHACHA20_POLY1305_SHA256

Default Value

auto

Description

A specific SSL cipher suite may be configured for the ACS server. This cipher suite will only be used when running TR-069 over SSL. Only a single cipher suite may be specified. If the TR-069 client device does not support this cipher suite, the SSL session will fail.

The default value of ‘auto’ indicates that openssl will choose the best cipher suite available based on the client.

The cipher suites are specified using the openssl cipher suite naming convention. For help translating between SSL/TLS cipher suite names and their openssl counterpart, please visit:

https://www.openssl.org/docs/man1.1.1/man1/ciphers.html

This testvar was added in CDRouter 9.1