Overview

By default, Plesk supports a wide variety of encryption standards such as TLS 1.1, TLS 1.2 and TLS 1.3. By default, all Plesk shared hosting has TLS 1.2 and TLS 1.3 enforced to ensure your site and data remains secure when connecting via HTTPS.

However, if you have your own Virtual Private Server (VPS) you may need to manually adjust in order to enforce the latest standards. This may also show up in the Qualys SSL Labs test as a “B” or similar.

Instructions

  1. Login to your Plesk VPS as the admin user.
  2. Go to Extensions -> My Extensions and select SSL It!:
    how to enforce higher grade encryption (https) for your plesk vps
  3. Click on the slider to enable synchronisation of TLS versions and ciphers from Mozilla:
    how to enforce higher grade encryption (https) for your plesk vps
  4. Select Intermediate, then Enable and Sync:
    how to enforce higher grade encryption (https) for your plesk vps
  5. This will update your webserver configuration automatically and enforce TLS 1.2 and 1.3 with higher grade ciphers.
  6. If you have previously run a Qualys test, re-run to confirm the changes. You may need to click the clear cache link to force it to re-run.

Information

While Modern ciphers and TLS may offer greater protection, it will cause issues for any older browsers (eg, all Internet Explorer versions) and systems. We only recommend enabling it where you have complete control over the systems accessing the website (eg an Intranet portal).

Was this article helpful?

Related Articles