- Community Home
- >
- Software
- >
- HPE OneView
- >
- Disable TLS 1.0
-
- Forums
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
05-21-2018 09:56 AM
05-21-2018 09:56 AM
Our Security Team Scanned our OneView Applizance and is requesting that we disable TLS that is not TLS 1.2.
Is this support or is this capable of doing so? Has anyone done this? All of our hardware that is being managed by this oneview is running 2018.03 SPP.
OneView is 4.0
- Firmware 4.00.07-0330056
Solved! Go to Solution.
- Tags:
- SSL
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
05-21-2018 05:31 PM
05-21-2018 05:31 PM
SolutionUnfortunately, it is not possible to disable TLS 1.0 and/or 1.1 in OneView 4.00. If your infrastructure is governed by the Payment Card Industry (PCI) DSS rules that require TLS 1.0 be disabled by June 1, 2018, please private message me so we can privately chat. We will support this functionality with our next HPE OneView release. And if you are going to ask when it will be released, I am unable to provide that information as we have yet to announce it.
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
09-24-2018 10:29 AM
09-24-2018 10:29 AM
Re: Disable TLS 1.0
Chris,
How can I disbale TLS v1.0 and 1.1 in OneView v4.1?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
09-24-2018 10:34 AM
09-24-2018 10:34 AM
Re: Disable TLS 1.0
Yes, using either the API, or PowerShell (Get-HPOVApplianceSecurityProtocol and Set-HPOVApplianceSecurityProtocol). These are only supported in the HPE OneView 4.10 PowerShell library and appliance. These cannot work with older OneView appliance versions as the API does not exist to manage.
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
12-05-2018 01:17 PM - edited 12-05-2018 01:18 PM
12-05-2018 01:17 PM - edited 12-05-2018 01:18 PM
Re: Disable TLS 1.0
Is it possible to disable only TLS Version 1.0 or does it disable version 1.0 and 1.1?
Also, what are the ramifications? Can it still manage Gen 7 Blades etc. or does it lose the ability to do that with TLS 1.0 disabled?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
12-05-2018 01:50 PM
12-05-2018 01:50 PM
Re: Disable TLS 1.0
The Cmdlet will allow you to disable TLS 1.0. If you attempt to disable 1.1 only, that will fail, as 1.0 is significantly less secure than 1.1. This ONLY impacts the HPE OneView UI, not taking to endpoints like iLO. We already enforce the highest TLS version the iLO supports. You can put the appliance into either FIPS or CNSA security mode, which will disable weak security protocols and methods, and then could prevent iLO3 communiation, which does not support TLS 1.2.
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
12-06-2018 07:51 AM
12-06-2018 07:51 AM
Re: Disable TLS 1.0
Thanks for the quick reply.
So to disable only TLS version 1 the ommand would look like this correct?
"Set-HPOVApplianceSecurityProtocol -EnableTlsVersion TLSv1.1,TLSv1.2"
A comma seperated value so it allows 1.1 and 1.2.
Or would it require 2 commands for each version?
Thanks again for the help.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
12-06-2018 11:52 AM
12-06-2018 11:52 AM
Re: Disable TLS 1.0
TlsV1.1, Tlsv1.2
You can tab complete the allowed values when you provide the parameter name when interacting with the Cmdlet.
Sent from Outlook
I am an HPE employee
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
02-07-2020 01:48 PM
02-07-2020 01:48 PM
Re: Disable TLS 1.0
Hi,
I am looking to disable TLS1.0 on HP P2000 G3 FC array. I read other posts which says not possible. But our security scans are detecting TLS1.0. Please suggest how to proceed
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2021 Hewlett Packard Enterprise Development LP