- Notes, cautions, and warnings
- Additional resources
- Introduction
- Manage the System
- Configure general system settings
- Configure system information
- Manage software versions
- View faulted storage resources
- Upgrade the system
- Manage security settings
- Manage system time
- Manage schedule time zone
- Manage support configuration and proxy server settings
- Manage support contracts
- Manage Centralized ESRS
- Manage SupportAssist (physical deployments only)
- Manage Connect Home
- Manage user roles
- Manage user accounts
- Manage user account settings
- Manage support credentials
- Manage system limits
- View installed feature licenses
- View and accept the End User License Agreement
- Manage remote logging
- Manage system certificates
- Manage snapshot protection schedules
- Manage task rules
- Manage jobs
- Manage job step
- Configure Network Communication
- Manage NAS servers
- Manage VLANs
- Manage tenants
- Manage CIFS Servers
- Manage NFS servers
- Manage Common Anti Virus Agent (CAVA)
- Manage Events Publishing configuration settings
- Manage CEPA pool configuration settings
- Manage VMware NAS protocol endpoint servers
- Manage reverse CHAP for mutual CHAP authentication
- Set up iSNS for iSCSI storage
- Manage iSCSI configuration
- Manage iSCSI nodes (servers)
- Manage Ethernet ports
- Manage SAS ports (physical deployments only)
- Manage FC ports
- Manage uncommitted ports
- Manage Management network interfaces
- Manage network interfaces
- Manage static IP routes
- Manage link aggregations
- Manage Fail-safe networking (physical deployments only)
- Manage DNS settings
- Manage NTP server settings
- Manage NIS server domains
- Manage SMTP server settings
- Manage NDMP server settings
- Manage LDAP settings
- Utility commands
- Manage Distributed Hierarchical Storage Management
- Manage DHSM Connection
- Manage the tie breaker node (dual-SP virtual deployments only)
- Manage a tie breaker node configuration (dual-SP virtual deployments only)
- Manage Hosts
- Manage host configurations
- Manage host LUNs
- Manage host groups
- Manage host initiators
- Manage host initiator paths
- Manage iSCSI CHAP accounts for one-way CHAP authentication
- Manage iSCSI connections
- Manage iSCSI connection paths
- Manage remote storage systems
- Create remote system configurations
- Verify settings for remote storage systems
- View settings for remote storage systems
- Change settings for remote storage systems
- Delete remote system configurations
- Cabinet level unplanned failover of replication sessions
- Pause replication sessions
- Resume replication sessions
- Manage VMware vCenter
- Manage ESXi hosts
- Virtual machine
- VM hard disk
- Manage Hardware Components
- Manage Storage Processor (SP)
- Manage disk
- Manage battery (physical deployments only)
- Manage power supply (physical deployments only)
- Manage link control card (LCC) (physical deployments only)
- Manage SSD (physical deployments only)
- Manage disk array enclosure (DAE)
- Manage disk processor enclosure (DPE)
- Manage memory module (physical deployments only)
- Manage System Status Card (physical deployments only)
- Manage fan modules (physical deployments only)
- Manage I/O modules, embedded modules, and 4-port cards (physical deployments only)
- Manage Storage
- Configure pools automatically
- Configure custom pools
- Manage pool tiers
- View pool resources
- Manage FAST VP general settings
- Manage FAST Cache (supported physical deployments only)
- Manage FAST Cache storage objects (physical deployments only)
- View storage profiles (physical deployments only)
- Manage drive groups (physical deployments only)
- Manage storage system capacity settings
- Manage system tier capacity settings
- Manage file systems
- Manage user quotas for file systems and quota trees
- Manage quota trees
- Manage quota settings
- Manage NFS network shares
- Manage SMB network shares
- Manage LUNs
- Manage consistency groups
- Manage VMware NFS datastores
- Manage VMware VMFS datastores
- Manage VMware protocol endpoints
- Manage vVol datastores
- Manage vVol objects
- Manage capability profiles
- Manage I/O limits
- Manage I/O limit configuration
- Protect Data
- Manage snapshots
- Manage snapshot NFS shares
- Manage snapshot CIFS shares
- Manage replication sessions
- Create replication sessions
- View replication sessions
- Change replication session settings
- Pause replication sessions
- Resume replication sessions
- Manually synchronize replication sessions
- Delete replication sessions
- Fail over replication sessions
- Fail back replication sessions
- Preserve asynchronous replication sessions
- Re-create a replication session
- Manage virtual RecoverPoint appliance CHAP accounts
- Manage Data at Rest Encryption (physical deployments only)
- Manage KMIP support (physical deployments only)
- Data Mobility
- Manage Events and Alerts
- Service the System
- Manage Metrics
- Use Cases
- Pool use cases
- File sharing use cases
- Resource configuration use cases
- Replication configuration use case
- Configure local replication
- Configure asynchronous replication
- Configure synchronous replication
- Create a replication interface
- Create a replication connection
- Create a replication session for block storage
- Create an asynchronous replication session for file storage
- Create a synchronous replication session for file storage
- View replication sessions
- Reference
Dell Unity™ Family Unisphere® Command Line Interface User Guide
Change security settings
Change the system security settings.
Format
/sys/security set {-fips140Enabled {yes | no} | -tlsMode {TLSv1.0 | TLSv1.1 | TLSv1.2} | -restrictedShellEnabled {yes | no}}Action qualifiers
| Qualifier | Description |
|---|---|
| -fips140Enabled | Enables or disables FIPS 140 compliance mode. Valid values are:
|
| -tlsMode | Specify the lowest version of the TLS protocol the system supports for SSL communication. Valid values are:
NOTE: Specifying TLS 1.1 or TLS 1.2 may impact existing client applications which are not compatible with the respective TLS protocols. The following functionality will not work when TLS 1.1 is specified:
|
| -restrictedShellEnabled | Enables or disables restricted shell on the storage processor for the Service account. Valid values are:
|
Examples
The following command changes the system security setting for FIPS 140 mode:
uemcli -d 10.0.0.1 -u Local/joe -p MyPassword456! /sys/security set -fips140Enabled yesStorage system address: 10.0.0.1 Storage system port: 443 HTTPS connection The system will reboot one SP at a time for this change to take effect. Do you want to continue? yes / no: yes Operation completed successfully.
The following command changes the system security setting for the TLS mode:
uemcli -d 10.0.0.1 -u Local/joe -p MyPassword456! /sys/security set -tlsMode TLSv1.1Storage system address: 10.0.0.1 Storage system port: 443 HTTPS connection Please refer to the Security Configuration Guide for backward compatibility. This change may impact running operations (e.g. replication) and the management services will be automatically restarted for the change to take effect. Do you want to continue? yes / no: yes Operation completed successfully.
NOTE:The
security set -tlsMode command does not update the supported TLS protocol versions for a NAS server. Use the
svc_nas service script to configure the supported TLS protocol versions for a NAS server. For more information about this service script, refer to the
Dell Unity Family Service Commands Technical Notes.
The following command changes the system security setting for restricted shell enabled setting:
uemcli -d 10.0.0.1 -u Local/joe -p MyPassword456! /sys/security set -restrictedShellEnabled noStorage system address: 10.0.0.1 Storage system port: 443 HTTPS connection This action will disable restricted shell for service account on the storage processor. Do you want to continue? yes / no: yes Operation completed successfully.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\