Use the following procedure to create the security settings used for SSL/TLS communications with the SVP.
CAUTION:
- If an SSL/TLS communication setting is not correct, SSL/TLS communication with the SVP might fail. If SSL communication fails, you need to configure the security settings again using the Tool Panel dialog box by using HTTP connection. Therefore, it is recommended to release the HTTP communication blocking using the Tool Panel dialog box before making security settings. For more information about how to release the HTTP communication blocking, see Releasing HTTP communication blocking.
- When you perform this procedure, use HTTPS connection for access. If you access via an HTTP connection, the ID and password used for login are communicated in clear text.
- If the self-signed certificates for the following communication paths are registered in the SVP, some of the test items are not verified in the communication test in this procedure:
- SVP – Syslog Server
- SVP – Key Management Server
- SVP – LDAP Server
- SVP – HCS server
If this is the case, communication will be performed while security requirements are not met. Use certificates issued by trusted CA (Certificate Authority).
- Verify the security settings of the SVP communication destination before the setting. If the protocol is TLS1.3 only, make sure that the communication destination supports TLS1.3.
When you use Device Manager - Storage Navigator with Adobe AIR, you must enable TLS1.2. Adobe AIR does not support TLS1.3.
- Verify that no other management or maintenance operations are being performed onDevice Manager - Storage Navigator.
- You must have Security Administrator (View & Modify) role to perform this task.