Mitel article QA2902:
Title: Highest cipher suite TLS 1.2 on MBG
Question: What are the effects of enabling highest cipher suite TLS 1.2 on MBG ?
Environment: MSL, MBG, Micollab
Answer:
a. 5020, 5212, 5215, 5220, 5224, 5304, 5312 and 5324 IP Phones, MiCollab Client and Mitel Navigator default to using TCP/PSK pre-TLS for their
transport protocol. They can no longer use TCP/TLS. Note that 5020, 5215 and 5220 IP Phones do not support TCP/TLS under any circumstance.
b. 5320, 5320e, 5330e, 5340e and 5360 IP Phones and the 5540 IP Console can continue to use TCP/TLS for their transport protocol provided that they
have been upgraded to the latest firmware version 6.4.1.x. This firmware is provided with the MBG Release 9.2 software.
c. 5235, 5330 and 5340 IP Phones and 5560 IPT default to using TCP/PSK pre-TLS for their transport protocol. They can no longer use TCP/TLS and will
provide only partial functionality calls can be made but the phones will display Application Loading and the keys will fail to update.
d. MiCollab Client MiNET Softphones default to using TCP/PSK pre-TLS.
e. DECT phones will no longer be able to connect.
f. 5550 IP Consoles default to using TCP/PSK pre-TLS for their transport protocol. They can no longer use TCP/TLS and will provide only partial functionality calls
can be made but the Phonebook will be inaccessible.
g. MiVoice Business Consoles running Release 9.0 and above will be fully functional. Earlier versions default to using TCP/PSK pre-TLS for their transport protocol.
They can no longer use TCP/TLS and will provide only partial functionality calls can be made but the Phonebook will be inaccessible.
h. 69xx IP Phones will be fully functional once upgraded to the firmware included in MiVoice Border Gateway.
i. The SIP-based softphone included in the legacy MiCollab client will fail to connect over TLS.
Note : Please refer KMS Document: QA1442, How to apply highest security settings to MSL MBG MiCollab Server
