LAN Routing
1748286 Members
3897 Online
108761 Solutions
New Discussion

Re: MSR 1003-8 security TLS out of date?

 
Mark_Gregory
Advisor

MSR 1003-8 security TLS out of date?

Checking the documentation I found that the MSR 1003-8 supports SSL3.0/TLS1.0

When I loaded a SSL certificate and associated this with the https for login through a browser, I found I could no longer connect. It appears that the browsers have all deprecated TLS 1.0 and TLS 1.1

We have 10 MSR1003-8 and would appreciate a firmware update to TLS 1.3 asap.

Does anyone know of an update that we're missing? We have the latest firmware installed (it is three or more years old now!)

6 REPLIES 6
akg7
HPE Pro

Re: MSR 1003-8 security TLS out of date?

Hi,

Could you please share running software version?

Thanks!

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the companyAccept or Kudo
Mark_Gregory
Advisor

Re: MSR 1003-8 security TLS out of date?

It is version 5.3 loaded from this file MSR1000_5.20.R2516P13.zip

This is the latest revision of the firmware that is publically available.

We need HPE to release a new firmware asap. It is timely that the companies that make web browsers have dropped TLS 1.0 and TLS 1.1 so now it is time for equipment suppliers to upgrade the firmware.

akg7
HPE Pro

Re: MSR 1003-8 security TLS out of date?

Hi,

Yes this is the latest version for comware 5.

You need to log a case with support so they will check with product development team if there are any plan to release latest software for comware 5.

Please find below Comware 5 Security Configuration Guide and refer SSL server policy. It might be useful for you:

https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=c05327948

Thanks!

 

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the companyAccept or Kudo
Mark_Gregory
Advisor

Re: MSR 1003-8 security TLS out of date?

Hi, I don't want this to be taken the wrong way, but surely HPE have noticed that TLS 1.0 and TLS 1.1 are deprecated? Why is it my problem to put in a support case for something that is obvious? This situation should be a no brainer.

"Dear Customers, we're racing to get a new firmware to you that includes TLS 1.2 and TLS 1.3 support so that https and SSLVLAN continue to work. In the interim, this is what you should do....."

Please ask someone that knows what is happening to respond here. I would certainly like to know when I can upgrade my 10 MSR 1003-8 so that I can get them working again.

akg7
HPE Pro

Re: MSR 1003-8 security TLS out of date?

Hi,

Don't take me wrong, reason for asking to log a support case. because as far I know Comware 5 is outdated and discontinued. and there is no update that new software will be released or not..

Thanks!

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the companyAccept or Kudo
Mark_Gregory
Advisor

Re: MSR 1003-8 security TLS out of date?

I don't have a support contract so I cannot submit a support case. The MSR 1003-8 is still being sold so it should be secure - meaning it should not have TLS 1.0 and should have TLS 1.3. This is a problem that should be fixed and the user community informed of when the new firmware will be available.