local_disable_deprecated_protocols

This API disables the TLS 1.1 protocols and enables TLS 1.2 protocols on your current machine.

For more information about the TLS 1.1 and 1.2 protocols, see disable_deprecated_protocols.

This API is available in Guardium V10.1.4 and later.

GuardAPI syntax

local_disable_deprecated_protocols parameter=value

Parameters

Parameter Value type Description
force Boolean Determines whether to force disabling protocols, even when a unit is down. Valid values:
  • 0 (false)
  • 1 (true)

Default = 0 (false)

api_target_host String

Specifies the target hosts where the API executes. Valid values:
  • all_managed: execute on all managed units but not the central manager
  • all: execute on all managed units and the central manager
  • group:<group name>: execute on all managed units identified by <group name>
  • host name or IP address of a managed unit: specified from the central manager to execute on a managed unit.  For example, api_target_host=10.0.1.123.
  • host name or IP address of the central manager: specified from a managed unit to execute on the central manager. For example, api_target_host=10.0.1.123.

IP addresses must conform to the IP mode of your network. For dual IP mode, use the same IP protocol with which the managed unit is registered with the central manager. For example, if the registration uses IPv6, specify an IPv6 address. The hostname is independent of IP mode and can be used with any mode.

Examples

grdapi local_disable_deprecated_protocols

Sample output:

Retrieving STAP info from MUs
Evaluating versions of 2 STAPS
        Warning: Found STAP using clear text - 9.98.0.0
        Warning: Found STAP using clear text - 9.98.0.0
Retrieving local GIM clients info
Retrieving GIM client info from MUs
Disabled deprecated protocols, please verify communication between system components.
ok