Operator console using weak CBC cipher
search cancel

Operator console using weak CBC cipher

book

Article ID: 188102

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM) CA Unified Infrastructure Management On-Premise (Nimsoft / UIM)

Issue/Introduction

During vulnerability scan, it was found out that OC is supported with CBC ciphers. 

Please help to confirm what are the ciphers available. 

 

 

Environment

Release : 20.4.x

Component : wasp

Resolution

 There are two ways to modify, remove or add ciphers in WASP.

1. Open Raw Configuration of wasp probe  in IM (Infrastructure Manager),

2. select https_ciphers and click EDIT Key

3. Change or Modify the values with comma separated

 

or 

 

Go to ~Program Files (x86)\Nimsoft\probes\service\wasp open wasp.cfg file

change values of https_ciphers 

 

Then

1. Deactivate  wasp probe

2. Delete work folder in  ~Program Files (x86)\Nimsoft\probes\service\wasp

3. Activate WASP

Please also make sure that the certificate added also supports the ciphers added in wasp

Note: Please take back up of https_ciphers value before modifying 

Additional Information

(Optional) Change the HTTPS Ciphers