Can someone advise the process to enable SSL certificates for all TPAM devices and disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption. Thank you.
Here is a video tutorial on installing SSL certificate for TPAM:
In regards to ciphers, please see the below article for information on what is enabled based on TPAM version:
we have 3 TPAM appliances one is working as primary and other two as standby appliances. We also have 6 DPAs spread across multiple locations.
I came to know i need to install TPAM Hotfix 10201 for Solution 258397 prior to installing web certificates on all TPAM Appliances.
Please confirm if i need to reboot all 3 TPAM appliances after applying Hot fix.
I also came to know that we need to reboot all DPAs after installing web certificate on TPAM Appliance.
Please clarify if i can reboot DPAs one by one.
Also do I need to reboot TPAM Appliances also after installing the web certificates.
Thank you for your assistance.
I can understand your concern but if you read through the installation notes that accompany both the KB and the PDF where the hot fix is downloaded, there is no mention of needing to reboot the appliances.
So when you apply the Hotfix you do not need to worry about re-booting the TPAM appliances or the DPA's.
As to rebooting DPA's. I would always suggest that you reboot them one at a time and verify that the tests from TPAM to DPA and from DPA to TPAM are still working after a reboot.
As the DPA's round robin load balance then TPAM will simply move the work to an available DPA while the reboot process is carried out.
All the best