Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
Server Management - Systems Insight Manager
cancel
Showing results for 
Search instead for 
Did you mean: 

SSL Configuration in Insight Control

Highlighted
JeffG
Occasional Contributor

SSL Configuration in Insight Control

I need to ensure that Insight Manager uses strong cryptography. I have found documentation that SIM supports ssl v3 and tsl 1 but cannot find documentation on how to enforce it. Scanning for vulnerabilities on ports 7096, 50000, 50001, 51125 and 51127 discovered that weak and medium strength ciphers are supported. I am currently running Insight 6.2 on windows 2008. Any help would be really appreciated.
X
2 REPLIES
AshaR_1
Occasional Visitor

Re: SSL Configuration in Insight Control

Hi Jeff G

Yes, HPSIM uses SSLV3/TLS1. We currently do not support any UI to enforce stronger cipher suites, however we are planning to support one in near SIM release.

SIM uses several Stronger Ciphersuites (128 bits) and few weaker ciphers as well. In future, we could restrict the weaker ones through UI.

Alternatively, by restricting all the weaker ciphers from the Client side (Browser) by any means, the server can not get a chance to select any weaker cipher for its SSL transport.

Thanks.
okanek
Occasional Contributor

Re: SSL Configuration in Insight Control

Hi,

 

Can anyone provide an update on this, i.e. are any UIs supported in v6.3 or v7.0 to enforce stronger ciphers?

 

Thanks.