The Apache SSLEngine directive should be configured appropriately. (1) On / Off (1) Apache configuration file: SSLEngine directive Rule Title: A private web server must utilize TLS v 1.0 or greater. STIG ID: WG340 W22 Rule ID: SV-14297r4_rule Vuln ID: V-2262 Severity: CAT II Class: Unclass Rule Title: A private web server must utilize TLS v 1.0 or greater. STIG ID: WG340 A22 Rule ID: SV-33029r1_rule Vuln ID: V-2262 Severity: CAT II Class: Unclass DISA STIG Apache SITE 2.2 for Windows Release: 1 Benchmark Date: 23 Nov 2011 DISA 2011-11-23 V1R1 Prose (PDF) DISA STIG Apache SITE 2.2 for Unix Release: 1 Benchmark Date: 23 Nov 2011 DISA 2011-11-23 V1R1 Prose (PDF)