VPLEX: How to change TLS version for the webserver

Summary: This article talks to how to change the SSL protocols to supported TLS (Transport Layer Security) versions for the VPLEX webserver

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

For the VPLEX webserver the user can choose between Transport Layer Security (TLS) versions TLSv1.0, TLSv1.1 and TLSv1.2 over SSLv3.

From the VPlexcli enter the below command to set the TLS version for a Web server HTTPS connection from within the /security/web-server context:

VPlexcli:/security/web-server> set ssl-version TLSversion, SSLv2Hello

where TLSversion is one of the following values:
  • TLSv1
  • TLSv1.1
  • TLSv1.2
To apply the changes,  type the following command at the VPlexcli.

webserver restart

Sample output:
VPlexcli:/> webserver restart
addWebapp(/smsflex,/opt/emc/VPlex/tomcat/webapps/smsflex)
addWebapp(/cimom,/opt/emc/VPlex/tomcat/webapps/cimom)
addWebapp(/,/opt/emc/VPlex/tomcat/webapps/ROOT)
addWebapp(/vplex,/opt/emc/VPlex/tomcat/webapps/vplex)
SSL protocols enabled for Server: TLSv1,TLSv1.1,TLSv1.2,SSLv2Hello
SSL protocols enabled for Client: TLSv1,TLSv1.1,TLSv1.2
https keystore: /var/log/VPlex/cli/.keystore
started web server on ports {'http': 49880, 'https': 49881}


Additional Information

For additional information on SSL and VPLEX refer to
KBA 524462, "VPLEX: SSLv3 POODLE Vulnerability (CVE-2014-3566)"
For other EMC product refer to KBA 467435, " Link Error SSLv3 POODLE Vulnerability (CVE-2014-3566) in EMC products."

Affected Products

VPLEX Series

Products

VPLEX for All Flash, VPLEX Series, VPLEX VS2, VPLEX VS6
Article Properties
Article Number: 000158475
Article Type: How To
Last Modified: 20 Nov 2020
Version:  2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.