Description
This doc will cover configuration of the CSA for 9.6 SP3 cores after upgrading to the CSA to 184 ( link to bulletin)
Cause
CSA update 184 has a bug fix to enforce TLS for all traffic. The cause was 1.1 (default) would fallback to 1.0 with calls from the core- Client side would use 1.1 and 1.2. Since then we have increased the TLS version of all calls by our applications to 1.2 but in 9.6 some application/services would still use 1.0.
Resolution
Currently in 9.6 you will need to lower the minimum TLS version the CSA allows, this is done on the console shown below:
As you can see the default is set to 1.1 and will need to be changed to 1.0 for 9.6 Cores only. All future versions (2016.X, 2017.X) will handle the 1.1 and 1.2. 2016.1 does have issues with the console formatting if you change it to 1.2 and would recommend you use a higher core version in case you want to limit all traffic to 1.2 only.
Please see the downloads page to upgrade core and helpful links prior to upgrading your core.