Enable TLSv1

To comply with security regulations, TLSv1 and TLSv1.1 are disabled by default in Puppet Enterprise (PE) versions 2019.8.9 and later.

You must enable TLSv1 to install agents on these platforms:

AIX
Solaris 11

In the PE console, navigate to Node groups > PE Infrastructure.
On the Configuration data tab, find or add the puppet_enterprise::master::puppetserver class.
Add the ssl_protocols parameter and set the value to an array of strings representing allowed TLS versions.
For example:
```
["TLSv1", "TLSv1.1", "TLSv1.2"]
```
Click Add data and commit changes.
Run Puppet on the primary server and any compilers.

Tip: There are several ways to Run Puppet on demand.

Was this page helpful?

We’re sorry to hear that!
Please tell us why so we can help. Enter your feedback and email. This form is sent to the Puppet docs team. We ask for your email as we might contact you regarding your feedback. If you need help with the product itself, visit Puppet Support or ask in Puppet Community on Slack. Feedback:

Email Address:

To learn about how Puppet uses your personal information, visit our privacy policy.

If you leave us your email, we may contact you regarding your feedback. For more information on how Puppet uses your personal information, see our privacy policy.

See an issue? Please file a JIRA ticket in our [DOCUMENTATION] project.