VxRail: How to disable TLS 1.0 on VxRail 4.0.132 and above
Print
Created by: Srinath Ramachandran
Modified on: Mon, 21 Sep, 2020 at 11:53 AM
Article Content
| Instructions | Versions prior to vSphere 6.0 Update 3 are not currently supported in disabling TLSv1.0 or manipulating the other TLS communication protocols.
Requirement: VxRail needs to be running on version 4.0.132 (vSphere 6.0 U3) or above
All details are in VMware KB 2148819, please give it an extensive reading
Managing TLS protocol configuration for vSphere 6.0 Update 3 https://kb.vmware.com/kb/2148819 Steps briefed as below:
1. Download and install TLS configuration tool for vCenter 6.0 U3
VMware vSphere TLS Configurator for VC6.0 U3
https://my.vmware.com/group/vmware/details?downloadGroup=VC60U3&productId=491
(Customer will need to sign with his/her VMW ID to download the software)
2. Disable TLSv1.0 v1.1 and enable TLSv1.2 on vCenter (tool will restart services)
3. Disable TLSv1.0 v1.1 and enable TLSv1.2 on each ESXi host, enter MM and reboot one by one to take effect
(Depends on how many hosts customer have, this step could take some time)
4. Disable TLSv1.0 v1.1 and enable TLSv1.2 on PSC (tool will restart services)
5. VxRail Manager can be accessed without problem
Note: VxRail Manager by default is TSLv1.2 only. |
Srinath is the author of this solution article.
Did you find it helpful?
Yes
No
Send feedback Sorry we couldn't be helpful. Help us improve this article with your feedback.
