You can modify the Nginx configuration file to add ciphers or remove weak ciphers.

Prerequisites

  • You must have administrator privileges on the machine where App Volumes Manager is installed.

  • You must use the format that is defined in https://www.openssl.org/docs/man1.0.2/apps/ciphers.html under the section CIPHER LIST FORMAT while adding the ciphers. The ciphers are specified as a list separated by colons, spaces, or commas.

  • Locate the nginx.conf file and create a back up of the file. nginx.conf is located at C:\Program Files (x86)\CloudVolumes\Manager\nginx\conf\.

Procedure

  1. Log in to the machine where App Volumes Manager is installed.
  2. Identify the line starting with ssl_ciphers in the nginx.conf file.
    Add the list of ciphers before the existing list of ciphers; the order of ciphers matters.
    For example, add ECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH to the existing list of ciphers.
  3. (Optional) To disable any ciphers, remove the ciphers from the list.
  4. Restart the App Volumes Manager service.