Disabling SSLv3 on vCenter Single Sign-On port 7444
book
Article ID: 324788
calendar_today
Updated On:
Products
VMware vCenter Server
Issue/Introduction
This article provides information on disabling SSLv3 on the vCenter Single Sign-On port 7444.
Note: When you upgrade to vCenter Server 6.0 Update 1, the SSLv3 protocol is enabled on the vCenter Single Sign-On port 7444 by default.
Environment
VMware vCenter Server 6.0.x
Resolution
Note: Perform these steps after the upgrade to vCenter Server 6.0 Update 1 is completed on the Platform Service Controller (PSC) machine and all the nodes that are registered to the PSC.
To disable SSLv3 on the vCenter Single Sign-On port 7444:
Connect to the PSC machine.
Open the server.xml file for the vCenter Single Sign-On.
- Windows default location: C:\ProgramData\VMware\vCenterServer\runtime\VMwareSTSService\conf\
- vCenter Server Appliance default location: /usr/lib/vmware-sso/vmware-sts/conf/
Create a backup of the file.
Find this line:
'<Connector SSLEnabled="true">'
Append this line at the end of the line in step 4.