We disabled weak ciphers on 3.7.0 in two places:
- C:\Program Files (x86)\Dell\SysMgt\iws\config\keystore.ini
I was just looking over a hardening checklist that we used at the time we implemented 3.7.0, and it says that disabling weak ciphers for the server.xml file was only done on the A-SRV.
It does not instruct to disable them in the server.xml file on the D-SRV or Remote Collectors.
Is this correct? Would disabling of weak ciphers only need to be done for both bulleted items above on an LS A-SRV, and not the D-SRV or Remote Collector?
Thanks in advance,