How to Disable TLS 1.0 and TLS 1.1 in ONTAP 9.8 and earlier
Applies to
- ONTAP 9.8 and earlier
- ONTAP System Manager
Description
- I need to disable TLS 1.0 and TLS 1.1 in ONTAP.
- The security config modify command modifies the existing cluster-wide security configuration.
- If you enable the FIPS-compliant mode, the cluster automatically selects only TLS protocols.
- Use the -supported-protocols parameter to include or exclude TLS protocols independently from FIPS mode.
- By default, FIPS mode is disabled, and ONTAP supports the TLSv1.2, TLSv1.1, and TLSv1 protocols.
- Reboot is required