I'm hoping someone is able to shed some light on the ssl configuration within the ACE Software versions. We're running a No. of ACE30 and 4710 devices, all currently running A4 (2.1) image. We're looking to upgrade in order to be able to take advantage of the later TLS standards. Having tested the upgrade within a test environment, the only slight problem we've noticed is the lack of additional SSL ciphers available within the https probe configuration. Whilst the cipher version specified is 'TLS Version 1.0', does this include 1.0 only or does that allow connectivity to hosts that are also configured with TLS 1.2 based certificates? Being able to probe TLS 1.2 versions is one of main drivers for the upgrades, so we're keen to understand if others have faced the same issue.
I've put the version and cipher information below from both A4 (2.1) and A5 (3.3)
###### Options running A4 (2.1) ###########
ACE30/Context(config-probe-https)# ssl version ? all All SSL versions SSLv3 SSL Version 3.0
###### Options following upgrade - A5 (3.3) ###########
ACE30/Context(config-probe-https)# ssl ? certificate-expiration Ssl certificate expire check ignore cipher Configure ssl cipher to be used for the https version Specify ssl version to use for the https probe
ACE30/Context(config-probe-https)# ssl version ? all All SSL versions TLSv1 TLS Version 1.0
APIC 4.1(2u)vCenter appliance 188.8.131.52000 I followed the instructions at "https://[APIC FQDN]/vcplugin/", using PowerCLI to install the plugin. It seemed to work - "[x] Installed vCenter plugin version 4.1.2000.21". However, on logging into...
Login to Cisco Communities
Go to the Cisco Intersight Community and to Intersight Product updates
*This means you will get an email only if content is posted specifically to Intersight Product Updates. And all product updates wi...
Hi,There was a leaf Switch live in our fabric which was having some issues . We got an RMA for it and replaced the new leaf Switch with the same Node ID. After replacement we are unable to SSH the new leaf Switch from APIC .getting some error for RSA keys...
Hi, I am trying to create multiple subnets in one bridge domain using postman for ACI automation. I want to know if there is a document specific to the automation mentioned above. Can someone help me with this please. I am using global variables for ...