Security settings (TLS & Certificates)

Whilst it is possible, we don't recommend disabling TLSv1.0/1.1 on ESRS-VE gateways at this stage. The reason being there are still a few products which can only support TLSv1.0 for HTTPS call-home.

Note that ESRS-VE always uses TLSv1.2 secured connections across the Internet to the ESRS backend. Any TLSv1.0 connections are on the customer internal network between the Dell EMC product and the ESRS gateway.

Regarding your other question, to change the ESRS WebUI certificate see the following KB article:

https://support.emc.com/kb/485953

Kind Regards,

Marc

Hello,

We have the same problem, having to disable TLS1.0. Even if it is not recommended to disable it, can you indicate what is the process to disable it?

Thank you,

Pedro

I am facing the same issue, can.you please tell me the process of disabling it, if you have already done that?

Has anyone figured out how to disable TLS v1.0-1.1 ?

I've been able to disable TLSv1.0 and TLSv1.1 in this way:

edit opt/httpdlistener/conf/extra/
comment current SSLProtocol all -SSLv2 -SSLv3
add SSLProtocol -all +TLSv1.2

then restart service service esrshttpdlistener restart

Could you please give a little more details to a newbie ? Looking in that directory which file do you edit ?

Applied this method and it worked.

edit opt/httpdlistener/conf/extra/
comment current SSLProtocol all -SSLv2 -SSLv3
add SSLProtocol -all +TLSv1.2

then restart service service esrshttpdlistener restart

But after sometimes it happened again.