Disable the weak ciphers and enable strong ciphers that are used in the Apache HTTPD handler. To prevent man-in-the-middle attacks, review the Apache HTTPD handler ciphers on vRealize Operations Manager against the list of acceptable ciphers and disable all of the ciphers that are considered weak.

Procedure

  1. Open the /usr/lib/vmware-vcopssuite/utilities/conf/vcops-apache.conf file in a text editor.
  2. Verify that the file contains the line SSLCipherSuite HIGH:!aNULL!ADH:!EXP:!MD5:!3DES:!CAMELLIA:!PSK:!SRP:!DH:@STRENGTH.
  3. Save and close the file.