Dell Unity:如何在 Unity 陣列上停用 TLS 1.0 和 1.1

Summary: 本文說明如何在 Unity 陣列上停用 TLS 1.0 和 1.1。(使用者可修正)

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

事實:
Unity 4.3 及更新版本
停用 TLS 1.0 不適用於 Unity 作業環境 4.2.1 或更早版本。
PUHC 錯誤: "TLSv1.0 and TLSv1.1 are not secure. It is recommended that you use TLSv1.2. See KB 22527 for information about how to disable TLSv1.0 and TLSv1.1"

手續:
此程序是以 UEMCLI 作為服務使用者執行。
 

注意:使用 UEMCLI 的指示位於文章 Dell Unity:如何使用 Unisphere CLI (UEMCLI) 命令。 

 

注意:UEMCLI 用戶端 5.0.2 及更早版本不支援 TLSv1.2。如果在 Unity 上停用 TLSv1.1,舊的 UEMCLI 用戶端將無法與 Unity 連線。升級至 UEMCLI 用戶端 5.0.3 版或更新版本,以確保支援 TLSv1.2。

如果已啟用符合 FIPS PUB 140-2 規範,Unity 將使用 TLS v1、TLS v1.1 和 TLS v1.2,並僅透過符合聯邦規範的加密進行通訊。

使用以下步驟停用 Unity OE 5.1 及更新 版本陣列上的 TLS 1.0。
  1. 使用下列命令顯示目前設定 
    uemcli -u admin -securepassword /sys/security show
  2. 使用以下命令停用 TLS 1.0: 
    uemcli -u admin -securepassword /sys/security set -tlsMode TLSv1.1

    或者,您可以設定 -tlsMode TLSv1.2 來停用 TLS 1.0 和 1.1。

    uemcli -u admin -securepassword /sys/security set -tlsMode TLSv1.2

如果陣列執行 OE 4.3 至 5.0,請使用以下步驟停用 TLS 1.0:

  1. 使用下列命令顯示目前設定

    uemcli -u admin -password <Your Password> /sys/security show

  2. 使用以下命令停用 TLS 1.0:

    uemcli -u admin -password <Your Password> /sys/security set -tls1Enabled no

    以上命令的範例:

    XXXXX spb:~> uemcli -u admin -password Password1234# /sys/security show
Storage system address: 127.0.0.1
Storage system port: 443
HTTPS connection

1:    FIPS 140 mode         = disabled
      TLS mode              = TLSv1.0 and above
      Restricted shell mode = enabled

XXXXX spb:~> uemcli -u admin -password Password1234# /sys/security set -tlsMode TLSv1.1
Storage system address: 127.0.0.1
Storage system port: 443
HTTPS connection

Please refer to the Security Configuration Guide for backward compatibility.
This change may impact running operations (e.g. replication) and the management services will be automatically restarted for the change to take effect.
Do you want to continue?
yes / no: yes
Operation completed successfully.

XXXXXspb:~> uemcli -u admin -password Password1234# /sys/security show
Storage system address: 127.0.0.1
Storage system port: 443
HTTPS connection

1:    FIPS 140 mode         = disabled
      TLS mode              = TLSv1.1 and above
      Restricted shell mode = enabled

    如果使用者的密碼有特殊字元,請使用以下命令。當系統提示您輸入密碼時,請輸入含特殊字元的使用者密碼:

    uemcli -u admin -securepassword /sys/security show

uemcli -u admin -securepassword /sys/security set -tlsMode TLSv1.2

 

其他資訊:

Affected Products

Dell EMC Unity, Dell Unity 450F DC, Dell Unity 300, Dell Unity 300 DC, Dell EMC Unity 300F, Dell EMC Unity 350F, Dell Unity 350F DC, Dell EMC Unity XT 380, Dell EMC Unity XT 380F, Dell EMC Unity 400, Dell Unity 400 DC, Dell EMC Unity 400F , Dell EMC Unity 450F, Dell EMC Unity XT 480, Dell EMC Unity XT 480F, Dell EMC Unity 500, Dell EMC Unity 500F, Dell EMC Unity 550F, Dell EMC Unity 600, Dell EMC Unity 600F, Dell EMC Unity 650F, Dell EMC Unity XT 680, Dell EMC Unity XT 680F, Dell EMC Unity XT 880, Dell EMC Unity XT 880F, Dell EMC Unity Family |Dell EMC Unity All Flash, Dell EMC Unity Hybrid ...

Products

Dell EMC Unity Family
Article Properties
Article Number: 000022527
Article Type: How To
Last Modified: 12 May 2025
Version:  18
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.