Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

Article Number: 000190634

Secure Connect Gateway - Virtual Edition: How to enable TLS 1.0/1.1 on ports 9443 (webUI/ReST) and 443 (legacy httpslistener)

Summary: Secure Connect Gateway disables TLS 1.0/1.1 by default on ports 9443 (webUI/ReST) and 443 (legacy httpslistener). If a deployed device cannot be upgraded and or updated to support TLS 1.2 follow the below steps to enable TLS 1.0/1.1 on the Secure Connect Gateway VE. ...

This article may have been automatically translated. If you have any feedback regarding its quality, please let us know using the form at the bottom of this page.

Article Content

Instructions

Virtual Edition instructions (VMware/Hyper-V):
(for version 5.22, please download the attached tar file (tls-toggle_csp_en_US_1.tar), copy to the SCG server, extract the file with 
tar xvf tls-toggle_csp_en_US_1.tar
 and proceed with step 3)(You must be logged into Dell Support to see the file)
  1. Login as the root user to a console session on the SCG VE
  2. cd /opt/esrs/vappconfig/
  3. ./tls-toggle.sh enable
You should see the following output and TLS 1.0/1.1 is enabled: 
Enabling TLSv1 and TLSv1.1
Restarting esrshttpd and esrshttpdlistener
------------------------------------------------------------------------------------------------------------------------------

Container instructions (Docker/Podman/Kubernetes):
(for version 5.22, please download the attached tar file (tls-toggle-container_csp_en_US_1.tar), copy to the host server, extract the file with 
tar xvf tls-toggle-container_csp_en_US_1.tar
 and proceed with the steps below)(You must be logged into Dell Support to see the file)
  1. for version 5.22 only
  • Docker: docker cp tls-toggle-container.sh esrsde-app:/opt/esrsve/dockerconfig
  • Podman: podman cp tls-toggle-container.sh esrsde-app:/opt/esrsve/dockerconfig
  • Kubernetes: kubectl cp tls-toggle-container.sh <namespace>/<pod-name>:/opt/esrsve/dockerconfig/ -c esrsde-app
  1. Log in to a console session container host
  2. Go inside the container: 
    • Docker: docker exec -it esrsde-app /bin/bash

    • Podman: podman exec -it esrsde-app /bin/bash

    • Kubernetes: kubectl exec -it scg-app-0 --container esrsde-app -n scg -- /bin/bash

  1. cd /opt/esrsve/dockerconfig/
  2. ./tls-toggle.sh enable 
You should see the following output and TLS 1.0/1.1 is enabled: 
Enabling TLSv1 and TLSv1.1
Restarting esrshttpd and esrshttpdlistener
------------------------------------------------------------------------------------------------------------------------------
It is recommended to upgrade products reliant on TLS 1.0/1.1 as soon as possible.
In case the tls-toggle.sh script is not in the given place contact technical support and provide this KB.

Additional Information

To disable, run the command with the disabled option: 
./tls-toggle.sh disable
Disabling TLSv1 and TLSv1.1
Restarting esrshttpd and esrshttpdlistener

Article Properties

Last Published Date

15 Mar 2024

Version

8

Article Type

How To

Back to Top