7.0 excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file

7.0 excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file

excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file
The following configuration is recommended for systems running 7.0.0.63, and higher.
(For older 6.5 releases of UW, please see this article.)


/stoneware/config/excludeProtocols
TLSv1
TLSv1.1
# Uncomment the following line, to also disable TLS 1.2
#TLSv1.2
SSL
SSLv2
SSLv2Hello
SSLv3

/stoneware/config/includeProtocols - leave this file empty

/stoneware/config/allowCiphers
TLS_AES_128_GCM_SHA256
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_SHA256
TLS_ECDHE_RSA_WITH_AES_128_SHA
TLS_ECDHE_ECDSA_WITH_AES_128_SHA
TLS_ECDHE_RSA_WITH_AES_256_SHA384
TLS_ECDHE_ECDSA_WITH_AES_256_SHA384
TLS_ECDHE_RSA_WITH_AES_256_SHA
TLS_ECDHE_ECDSA_WITH_AES_256_SHA
TLS_DHE_RSA_WITH_AES_128_SHA256
TLS_DHE_RSA_WITH_AES_128_SHA
TLS_DHE_DSS_WITH_AES_128_SHA256
TLS_DHE_RSA_WITH_AES_256_SHA256
TLS_DHE_DSS_WITH_AES_256_SHA
TLS_DHE_RSA_WITH_AES_256_SHA
#TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
#TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

/stoneware/config/denyCiphers 
.*NULL.*
.*RC4.*
.*MD5.*
.*DES.*
.*DSS.*
TLS_DHE_RSA_WITH_AES_128_CBC_SHA
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_CBC_SHA
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384


Any changes to these files requires webNetwork to be shut down and started back up.

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        Will the shutdown of LUW servers and access to downloads affect my server licensing? No, the shutdown of the customer servers and access to the product and licensing downloads will not affect your server licensing. This license is downloaded and ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • LanSchool Documentation Guides

        LanSchool Classic Teacher Console The LanSchool Teacher Console is the interface teachers will use to manage their classroom and students. It contains all the tools necessary for a teacher to effectively interact with students and create a ...

      • Lenovo Unified Workspace 7.0.1.41 Released

        Highlights of Unified Workspace 7.0.1.41 Before you install: Please view the installation notes here. 7.0.1.41 requires a 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.1.41 Updated Log4j Updated Java Updated ...

      • Related Articles

      • excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file

        As of UW release 6.5.8.28, UW now supports TLS version 1.3.  The following configuration is recommended for systems running 6.5.8.28, and higher. (For older releases of UW, please see this article.) /stoneware/config/excludeProtocols TLSv1 TLSv1.1 # ...

      • excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file Legacy Configuration

        As of release 6.5.8.28, UW now supports TLS version 1.3.  For customers running UW 6.5.8.28, and higher, we recommend the following configuration. For customers running older releases of UW, the following configurations are still applicable. Starting ...

      • Change webNetwork License File

        To change/update your webNetwork license: Login to the Customer Portal, download your webNetwork license (license.sw). Copy the license file to each webNetwork server, replacing the existing file. The license file goes in the \stoneware\config ...

      • Debug CIFS file nodes

        ** Test with the Net use command ** From the main stoneware server go to a cmd prompt and type : ping server      Where server = the server name that holds the share. Make sure the ip number that comes back is the proper ip number then do a : ping -a ...

      • File Services Back-end Cache

        As of 6.3.0.x, the File Services back-end now caches the file listings for webStorage (and My Files). This means that if an individual uploads a file to a share outside of File Services, it will not appear in File Services (webStorage or My Files) ...