Solved: Disable TLSv1 and TLSv1.1 on port 443 in Managed cluster

In case of Dynatrace Managed, the 443/tcp port (in recent versions, I think it is from v136) is handled by bundled NGINX. Settings in server’s config.properties are not applied for nginx.

Actually, it’s just a matter of adding:

ssl_protocols TLSv1.2;

To the config file /opt/dynatrace-managed/nginx/conf/nginx.conf and restart the nginx. Add the line after the existing ssl settings.

If you have a multinode cluster, you will have to do that on every node.

Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner