Morning, All. I work remotely full time. Normally, I log into the HMC daily to check the logs, ensure the scheduled calls to the mothership are successful, and so on. MF is a z9 BC. (Not my decision, obviously.)
As of Tuesday, my attempts to connect to the HMC have failed, with both IE and Firefox. The error messages from IE just tell me to ensure TLS 1.0 / 1.1 / 1.2 are selected (they are). Firefox gives better error messages: Firefox cannot guarantee the safety of your data on <IP addr> because it uses SSLv3, a broken security protocol. The "Learn More..." link says that as of Firefox 34 the connections will be refused, and to go to TLS. Yes, POODLE vulnerability. So, the problem is evident. (Never mind that I believe it should have identified the problem and offered me the choice to go anyway, like it does with borked security certificates.) My question: Is there a setting in the HMC to switch from SSL to TLS encryption? If yes, are there other actions required to support this change? If not, does anyone have a work around? My life would be simpler if I can point my boss to the appropriate place, since I really don't want to have to drive into DC from WV to make the change. Cheers,,,Steve Steven F. Conway, CISSP AO-DTS- CTHO-HSD INFRASTRUCTURE (INFR) z/OS Systems Support Phone: 703-295-1926 Mobile: 703-402-2650 [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
