Hi Steve,
> Did you try with SECLEVEL=0 ?
Yes, I did. However, the result is the same: Ansible controller is not
happy with the bare TLS 1.0 reply from the legacy box:
"msg": "Status code was -1 and not [200]: Request failed: <urlopen error
[SSL: UNSUPPORTED_PROTOCOL] unsupported protocol (_ssl.c:1000)>"
- name: Query legacy boxes
hosts: legacyboxes
gather_facts: false
connection: local
tasks:
- name: GET the home page
ansible.builtin.uri:
url: https://{{ ansible_host }}
ciphers:
- 'DEFAULT@SECLEVEL=0'
Again, ciphers-wise, the setup is fine, but I do not think it is possible
to enforce the minimum TLS protocol version with the cipher string.
Thank you.
Regards,
Garri
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/85e58522-271e-45aa-832a-8a2a7c6b5a38n%40googlegroups.com.
