Thanks for reporting the issue and sorry for any inconvenience caused. Please read through on the Issue, Cause and Solution.
Issue:
1. You mentioned that the issue is occurred while upgrading from 6.2 to 6.2P1.
2. Observation was that your web browser shows that SSL/TLS handshake attempts to use a public key smaller than 1024 bits, for ephemeral Diffie-Hellman key agreement. Error: ERR_SSL_WEAK_SERVER_EPHEMERAL_DH_KEY.
Cause:
1. 6.2P1 build was generated on 06,May,2015.
2. The issue you are observing is caused by: https://access.redhat.com/security/cve/CVE-2015-4000 Reported on 2015-05-20. The CVE was observed much after the 6.2P1 was published.
3. You would have used latest browser with security updates that would have notified about ths CVE.
Solution:
While we work towards addressing new set of Vulnerabilities, below is the solution to bring Unified Manager up and running. As we donot have the exact web browser/client system versions that you are using, we request you to confirm if the below solution works.
Login to the System as ROOT and Execute the below commands in the specified order. The steps backs-up /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml.backup and removes weaker cipher from server.xml
service ocie stop
cp /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml.backup
sed 's/TLS_DHE_RSA_WITH_AES_128_CBC_SHA,//' /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml > tmp && mv -f tmp /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml
sed 's/TLS_DHE_DSS_WITH_AES_128_CBC_SHA,//' /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml > tmp && mv -f tmp /opt/netapp/essentials/jboss/server/onaro/deploy/jbossweb.sar/server.xml
service ocieau start
service ocie start
Need More Information:
1. Please provide the version of web browser you are using.
2. Did you make any modification to web browser in terms of security settting and installing any security add-ons. if Yes please specify the details.