Knowledge Base

TLS 1.0/1.1 support will be disabled by CDN provider

General Information

Plesk’s CDN provider is going to switch off TLS 1.0/1.1 support soon for security reasons.
This means that Plesk servers running on the old Operating Systems (OS) without the latest OS updates will not be able to connect to Plesk resources served by CDN provider.

Plesk will not be able to connect to

Extensions Catalog.
APS Catalog.
Online Help.

Potentially affected configurations

CentOS 4/5/6/7.
Ubuntu 12/14.
Debian 5/6/7.
Windows servers are not affected.

Actions to take

TLSv1.0 and TLSv1.1 are deprecated and their support can be dropped by browsers soon. We recommend to migrate Plesk to the latest major OS versions.

For CentOS 5 and older, Ubuntu 14 and older, Debian 7 and older and Plesk 12.x and older

Migrate Plesk to supported Plesk and OS versions because the above-mentioned operating systems do not support TLS 1.2.

Temporary alternative to migration

Log in to Plesk.
Install Panel.ini Editor extension.
Go to My Extensions > Panel.ini Editor > Editor (tab).

Change the catalogUrl and extension lines in [aps] and [extensions] sections as follows:

[aps]
 catalogUrl="https://aps.catalog.plesk.space" 
 
 [extensions] 
 catalog.url="https://ext.catalog.plesk.space"

For CentOS 6 and 7

Login to the server via SSH.
Update nss, curl, openssl packages and restart sw-engine service:

# yum update nss curl openssl -y
# service sw-engine restart

Note: it’s strongly recommended to update all system packages and reboot the server:

# yum update -y
# reboot