SMP Agent for Mac 8.0 - SSL, TLS, Key Exchange & Cipher Information

The following charts show test results for various configurations of SSL, TLS, Key Exchange and Cipher settings in IIS for SMP Agent for Mac communication with the SMP server. 

While it would be impossible to test every combination, there are several obvious combinations that were tested. The following conditions apply: 

• All SSL, TLS, Key Exchange and Cipher configuration changes were done using "IIS Crypto 2.0". A reboot of the SMP VM was done after each change. 
• The SMP virtual machine is running Windows Server 2012 R2 Standard. 
• The Mac client is running OS X 10.12.1 and the SMP Agent for Mac version 8.0.3311.
• Communication was tested on the client by running 'aex-refreshpolicies' in the Terminal.app. 

The following table shows test results for when the NS is NOT configured to use SSL. It is HTTP only. The default <servername> certificate is bound to port 443. The client is configured to use HTTPS (the agent will fallback to http):

The following table shows test results for when the NS IS configured to require SSL and accept client certificates. The default <servername> certificate is bound to port 443. The client is configured to use HTTPS (the agent will fallback to http):