This KB includes instructions on how to verify the version of OpenSSL running on the Siteminder Access Gateway Server.

PRODUCT: Symantec Siteminder

COMPONENT: Access Gateway

RELEASE: Any

OPERATING SYSTEM: Windows and Linux

Siteminder Access Gateway includes OpenSSL in the installation.  Periodically, Common Vulnerabilities and Exposures (CVE's) are published which address various applications, such as OpenSSL.  You may need to be able to compare the visions of OpenSSL published in the CVE's with the version installed on the Siteminder Access Gateway Server.

LINUX

1) Logon to the Access Gateway Host.

2) Change to the following directory

<Install_Dir>/CA/secure-proxy/SSL/bin

3) Run the following command:

$ openssl version

The version (similar to the following) should be displayed:

OpenSSL 1.0.2k-fips  26 Jan 2017

WINDOWS

OPTION #1: Command Line

1) Logon to the Access Gateway Host. 

2) Open a command-prompt (cmd.exe) with elevated privileges (Run As Administrator)

3)  Change to the following directory:

<Install_Dir>\CA\secure-proxy\SSL\bin

Default: "C:\Program Files\CA\secure-proxy\SSL\bin\

4) Run the following command:

openssl version

The version (similar to the following) should be displayed:

OpenSSL 1.0.2k-fips  26 Jan 2017

OPTION #2: File Explorer

1) Open Windows File Explorer

2) Change to the following directory

<Install_Dir>\CA\secure-proxy\SSL\bin

Default: "C:\Program Files\CA\secure-proxy\SSL\bin"

3) 'Right-click' "openssl.exe" and select Properties

4) In the Properties window, select the 'Details' tab

5) Review/record the value in the "Product Version" and/or "File Version" properties.  This is the version of Apache HTTP Server.