Mitel Forums - The Unofficial Source

Mitel Forums => Mitel Software Applications => Topic started by: MitelAvayaNortel on January 20, 2025, 03:12:55 PM

Title: MBG Fails Cyber Essentials Plus Audit
Post by: MitelAvayaNortel on January 20, 2025, 03:12:55 PM

I have 2 MBG Servers running version 12.0.  We have been audited for Cyber Essentials Plus and failed the audit as the Certificate on the ports other than 443 are SHA1 signed.  Has anyone experienced this / knows of a resolution?

Title: Re: MBG Fails Cyber Essentials Plus Audit
Post by: dilkie on January 20, 2025, 04:31:30 PM

what ports?

Title: Re: MBG Fails Cyber Essentials Plus Audit
Post by: MitelAvayaNortel on January 28, 2025, 04:15:06 AM

The ports are 3998, 5601, 6801 and 6881.  I have resolved the Sweet32 vulnerability and thankfully our vendor was able to get a statement from Mitel support that it needs to be the Mitel root certificate on these ports which the vendor has accepted and we can now pass this element of the assessment.