Disabling protocols and cipher suites

Server and Cluster Administration Guide for Hitachi NAS Platform

Version
15.1.x
Audience
anonymous
Part Number
MK-92HNAS010-35

Use this procedure to disable individual protocols or cipher suites as by using the Security Options page in the SMU Administration menu.

By default, all protocols and cipher suites are enabled. However, occasionally a protocol or cipher suite may be no longer secure and you can use the Security Options page to prevent a browser from communicating with the SMU using that protocol or suite.

It is necessary to have at least one protocol and cipher suite remain enabled.

Note: It is possible to lose SMU access by disabling too many protocols or cipher suites. If this happens, a warning will appear in your browser. To recover, use the SMU-only CLI command to reset both protocols and cipher suites to defaults. See the man pages for the smu-reset-tls-options command.
Navigate to Home>SMU Administration>Security Options to display the Security Options page.
By default, all protocols and cipher suites are enabled.
  1. To disable protocols, at Enable HTTPS Protocols, uncheck the check box next to a protocol to change its state to disabled.
  2. To disable cipher suites, use the arrow to move enabled cipher suites from the Enabled Cipher Suites list at the left to the Disabled Cipher Suites list at the right.
  3. Click the apply button at the bottom of the page to apply your changes.

Confirmation dialog boxes appear, and then the SMU Application Restarting page. The SMU web application restarts. This may take a couple of minutes.