Category: Plesk

Configuring SSL Protocols and Cipher Suites on nginx with Plesk

This is necessary to avoid security warnings on most browsers released after March 2015

The main configuration file is usually /etc/nginx/plesk.conf.d/server.conf

However, there will be cases when this will need to be applied on individual virtual hosts. Each virtual host will have a configuration file (/etc/nginx/plesk.conf.d/vhosts/XXDOMAINXX.conf)

The relevant configuration files will need to contain the following lines:

ssl_protocols TLSv1.2 TLS1.1 TLSv1;
ssl_ciphers HIGH:ADH:MD5:aNULL:eNULL:MEDIUM:LOW:EXP:kEDH;
ssl_prefer_server_ciphers on;

How useful was this post?

Click on a star to rate it!

Average rating / 5. Vote count: