Security Policy
It specifies the security policy used by a listener interconnected with an ingress.

This parameter is only available for HTTPS listeners added to a dedicated load balancer.
For QUIC listeners, this parameter is not used.
If both security_policy_id and tls_ciphers_policy are specified, only security_policy_id will take effect.
The priority of cipher suites is ECC, RSA, and TLS1.3 (ECC and RSA are both supported).
Value Range
tls-1-0-inherit, tls-1-0, tls-1-1, tls-1-2, tls-1-2-strict, tls-1-2-fs, tls-1-0-with-1-3, tls-1-2-fs-with-1-3, or hybrid-policy-1-0
Default Value
tls-1-2
Modifiable
Yes
Scope
CCE standard and CCE Turbo clusters
Suggestions
If cipher suites are supported, use strong security policies.

The default security policy is tls-1-2. The client needs to support the security policy type.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot