Currently NetVault is using OpenSSL for the following modules to communicate between the Server and Client:
/cygdrive/c/nv/build/base/library/meddbaccess
/cygdrive/c/nv/build/base/library/snapshot
/cygdrive/c/nv/build/base/library/http
/cygdrive/c/nv/build/base/configurator/text
/cygdrive/c/nv/build/base/webservice
The OpenSSL version used within /cygdrive/c/nv/src/base/thirdparty/openssl/lib/ is: 1.0.2k
This OpenSSL version support DTLS 1.2, TLS 1.2, SSLv3 and previous version(s).
When NV calls SSL_CXT_new to establish a connection protocol between Server/Client, we use SSLv23_server/client_method (), which will be negotiated to the highest version supported by both Client and Server - in this case TLS 1.2.
Workaround:
If a user wants to force disable protocols – They can update the NV configuration file: webservices.cfg, stanza “WebService”, “DisallowProtocols” and input value as: SSLv2, SSLv3, TLSv1, TLSv1.1, TLSv1.2
In Linux machines the path for the webservices.cfg is:
This is the default installations. If you have NetVault installed on another drive please make sure to check the path on the drive you software is installed
On the WebUI, from the left navigation pane, select Change Settings, click the Web Service icon, and update the Protocols to disable for incoming Web Service connections field.
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center