Managing Operations Agent ciphers
Is there a way to manage and control the allowed ciphers for Operations Agent v12?
I am working in an environment where certain ciphers are not allowed, but can't find how to change the cipher settings for the agents.
Thanks and regards,
Re: Managing Operations Agent ciphers
Yes, for example:
While at it you might also want to set COMM_PROTOCOL in the same name space, e.g.:
ovconfchg -ns sec.core.ssl -set COMM_PROTOCOL TLSv1.2
See the Agent Reference Guide for more information about those two settings.
Also, this link may be helpful with information about openssl ciphers:
You need OA 11.15 or OA 12 (or later for this to have an effect).
By restricting ciphers and protocols on one agent or server, older agents or servers with old L-Core version may not be able to communicate to such an agent or server any more.