ssllabs rating B to A or A+

Modified on 2025-06-10 12:18:26 +0200

Hi, In addition to another question I posted about security headers (https://helpdesk.paessler.com/en/support/solutions/articles/83259-implement-security-headers) I would like to know if you have any advise to get an A+ on ssllabs.com At this point I'm having the following issues: - This server supports weak Diffie-Hellman (DH) key exchange parameters. Grade capped to B. - This server does not support Forward Secrecy with the reference browsers. Grade capped to B.

For more information: https://www.ssllabs.com/ssltest/analyze.html?

Thank you. Dennis

Article Comments

Hello Dennis,

Thank you for the KB-Post. Just to check, is your PRTG Server set to "High security (TLS 1.1, TLS 1.2)" in its Webserver-System Settings? You can create a longer DH key in order to get a higher security rating. Please refer to the following knowledge-base article for detailed information: How can I generate a DH key that is longer than the existing default key in PRTG?

best regards.

Jan, 2019 - Permalink

Hi Torsten, Thank you for this. I managed to bring the rating up to an A! Regards, Dennis

Jan, 2019 - Permalink

Alright thanks for the update! (I removed your URL from the initial post.)

Jan, 2019 - Permalink

Disclaimer:
The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.

ssllabs rating B to A or A+

Article Comments

Search

Attention

Related Articles