Note: As of July 9, 2018, Blackbaud's School Management solutions (which include Core, onBoard, onCampus, onMessage, and onRecord) are utilizing a new top level navigation. This primarily affects users performing administrative tasks-constituent navigation for most parents, students, faculty, and alumni will remain the same. We appreciate your patience as we work to update our documentation. If you are seeing this message, the content of this solution is still being vetted for possible updates. Please refer to this mapping document if you need assistance finding a task in the new navigation.
If the Trustwave Vulnerability Scan Report gives a failing PCI compliance status because of "TLSv1.0 Supported" as the vulnerability noted, it is because of support for older browsers. The following exception may read: "Note to scan customer: This vulnerability is not recognized in the National Vulnerability Database. TLS v1.0 violates PCI DSS and is considered an automatic failing condition."
At this time TLSv1.0 includes support of older browsers and disabling it would cause issues with a good number of the browsers versions your constituents still use to access the site.
Note: SSL and early TLS are not considered strong cryptography and cannot be used as a security control after June 30, 2016. Prior to this date, existing implementations that use SSL and/or early TLS must have a formal Risk Mitigation and Migration Plan in place.
We will begin investigating whether it is possible for us to remove TLSv1.0 as an option and what impact that may have on older browsers.