How to disable TLS v1.0 and 1.1 on Nimble storage systems

We all know that TLSv1.0 & 1.1 are no longer recommended and not secure to be used in production environments. Specially, if you are working in a secure environment you will be asked to disable insecure protocols. So, let’s look at the steps. The steps are so simple and straightforward. [Note: all the commands are in Bold Italics]

Step 01: SSH into the Nimble management controller (use the admin account)

Step 02: Check whether TLSv1.0 & 1.1 are enabled using the command

 group – – info | grep -i tlsv

Step 03: If enabled, try to disable those

group – – edit – – tlsv1_enabled 

You may enter either Yes or No based on your requirement. If you type Yes, both TLSv1.0 & 1.1 would be disabled. 

Step 04: Verify whether TLSv1.0 & 1.1 are disabled

 group – – info | grep -i tlsv

How to test Network port connectivity from the vCenter server

On Vcenter servers, with the help of curl command, we can simply test connectivity. In this example, we are going to check the LDAP port connectivity (which is port 389).

Step 01: SSH into the vCenter server and access the shell

Step 02: Issue the command curl -v telnet://ipaddress:port_number

Connected means – the port is listening and accessible.