Effective December 3, NetApp adopts Microsoft’s Business-to-Customer (B2C) identity management to simplify and provide secure access to NetApp resources.
For accounts that did not pre-register (prior to Dec 3), access to your NetApp data may take up to 1 hour as your legacy NSS ID is synchronized to the new B2C identity.
To learn more, read the FAQ and watch the video.
Need assistance? Complete this form and select “Registration Issue” as the Feedback Category.

Active IQ Unified Manager Discussions

OCUM 6.4 weak encryption algorithms & CBC ciphers remediation

SMLocke

Hello, comrades!

 

As part of a vulnerability scan, my OCUM 6.4P1 server tripped on two particular encryption-related vulnerabilities: Weak MAC algorithms enabled (hmac-sha1-96, hmac-sha2-256-96, and hmac-sha2-512-96), and CBC mode ciphers enabled (aes128-cbc, aes192-cbc, and aes256-cbc). Has anyone else encountered this with the OVA version of OCUM 6.4P1, and have been able to remediate it?

 

Thanks!

1 ACCEPTED SOLUTION

niels

Hi SMLocke,

 

OCUM 6.4P1 has been pulled a while ago and instead the support site recommends to install 6.4P2 which has lots of security fixes.

A list of fixes can be found here:

http://mysupport.netapp.com/NOW/download/software/oncommand_cdot/6.4P2/

 

regards, Niels

View solution in original post

1 REPLY 1

niels

Hi SMLocke,

 

OCUM 6.4P1 has been pulled a while ago and instead the support site recommends to install 6.4P2 which has lots of security fixes.

A list of fixes can be found here:

http://mysupport.netapp.com/NOW/download/software/oncommand_cdot/6.4P2/

 

regards, Niels

View solution in original post

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public