The TLS 1.0 protocol was removed from the list of SSL protocols allowed by default in the management utility. ... This impacts the iControl REST API, and if you are using configuration management tools like Ansible (which uses Python) compiled with an older OpenSSL version, this will cause the client to suddenly fail to connect with an error similar to the following: SSLError: EOF occurred in violation of protocol. ... The protocol defaults can be seen with the following tmsh command: # tmsh list sys httpd ssl-protocol sys httpd { ssl-protocol "all -SSLv2 -SSLv3 -TLSv1" } ... BIG-IP systems refuse to allow TLSv1 connections, so the client will be unable to connect. ... This will most likely be encountered as a sudden inability to connect after upgrading. ... Conditions ... This can occur when connecting to the configuration utility, including using the iControl REST API, with an HTTPS client that is not compiled with TLS 1.1 or TLS 1.2 support. ... Workaround ... While TLS 1.0 can b...