HPE Community
Array Setup and Networking
1819794 Members
3481 Online
109607 Solutions
New Discussion

Server has a weak ephemeral Diffie-Hellman public key?

 
SOLVED
Go to solution
alimohammad136
Occasional Contributor

‎09-08-2015 10:31 AM

‎09-08-2015 10:31 AM

Server has a weak ephemeral Diffie-Hellman public key?

Hello Experts,

     I was trying to open gui for nimble storage from web browser and its throwing error, i am new to nimble and help would be really appreciated:

Server has a weak ephemeral Diffie-Hellman public key

ERR_SSL_WEAK_SERVER_EPHEMERAL_DH_KEY

Thanks,

0 Kudos
Reply
7 REPLIES 7
Not applicable

‎09-08-2015 01:26 PM

‎09-08-2015 01:26 PM

Re: Server has a weak ephemeral Diffie-Hellman public key?

In the same boat here with Chrome. I would like to use Chrome, however, if there is no solution then I will go back to another browser for accessing Nimble's web interface.

0 Kudos
Reply
Daniel.S
New Member

‎09-08-2015 02:12 PM

‎09-08-2015 02:12 PM

Solution

Re: Server has a weak ephemeral Diffie-Hellman public key?

Same issue here with both Chrome and Firefox. From memory, the 2.3 release finally allows you to use a proper CA-signed SSL certificate. Not sure if there's a workaround for this issue until 2.3 goes GA. I've just been using Microsoft Edge in the meantime.

Reply
alimohammad136
Occasional Contributor

‎09-08-2015 02:24 PM

‎09-08-2015 02:24 PM

Re: Server has a weak ephemeral Diffie-Hellman public key?

I just tried on Internet Explorer and it worked.

Reply
Daniel.S
New Member

‎09-08-2015 03:25 PM

‎09-08-2015 03:25 PM

Re: Server has a weak ephemeral Diffie-Hellman public key?

There's another thread on here about it: https://connect.nimblestorage.com/message/4885

According to the reports in that thread, the issue is resolved in 2.2.8.0 and 2.3.3.0

Reply
jstear120
New Member

‎09-10-2015 11:45 AM

‎09-10-2015 11:45 AM

Re: Server has a weak ephemeral Diffie-Hellman public key?

I just wanted to confirm that the update to 2.2.8.0 does indeed fix this issue.

Reply
alimohammad136
Occasional Contributor

‎09-10-2015 11:54 AM

‎09-10-2015 11:54 AM

Re: Server has a weak ephemeral Diffie-Hellman public key?

Thanks for update Stear.

Reply
Drew.Swan
Occasional Advisor

‎09-16-2015 04:22 PM

‎09-16-2015 04:22 PM

Re: Server has a weak ephemeral Diffie-Hellman public key?

In firefox you can change this behavior by setting these 2 keys to false in about:config

security.ssl3.dhe_rsa_aes_128_sha

security.ssl3.dhe_rsa_aes_256_sha

This will change it for ALL sites though - up to you to figure out the risk of that.

Drew

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.