サイツイカコノCLIニTLSv1.3アンコウガヒョウジサレナイ

最後の更新
PDFとして保存

Views:: 7

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: core

Last Updated:

環境

ONTAP 9.12.1
TLSv1.3
追加される暗号スイート：
TLS_AES_128_GCM_SHA256、
TLS_AES_256_GCM_SHA384、
TLS_CHACHA20_POLY1305_SHA256

問題

security config show コマントノシツコウコ

::*> security config modify -interface SSL -supported-cipher-suites TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256

有効な暗号にTLS_CHACHA20_POLY1305_SHA256が表示されません：

::*> security config show
 Cluster    Supported FIPS Mode  Protocols Supported Cipher Suites                                                                    
 ---------- --------- ----------------------------------------------------------
 false      TLSv1.3,  TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,
            TLSv1.2   TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
                      TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
                      TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
                      TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256,
                      TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
                      TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
                      TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256