Thanks for the response. We are at RHEL 6.7... getting the hits on 389
and 636 so its the Directory server ports which I assume is dse.ldif.
From: Martin Kosek <mko...@redhat.com>
To: Sean Hogan/Durham/IBM@IBMUS, freeipa-users
Date: 04/27/2016 01:43 AM
Subject: Re: [Freeipa-users] IPA vulnerability management SSL
On 04/27/2016 07:27 AM, Sean Hogan wrote:
> We currently have 7 ipa servers in multi master running:
> Tenable is showing the use of weak ciphers along with freak
> have followed
> https://access.redhat.com/solutions/675183 however issues remain in the
> being used.
Can you show the full report, so that we can see what's wrong? What I am
looking for also is if the problem is LDAPS port or HTTPS port, so that we
not fixing wrong service.
DS ciphers were hardened in RHEL-6.x and RHEL-7.x already as part of this
Further hardening comes with FreeIPA 4.3.1+:
(it should appear in RHEL-7.3+)
Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project