Fix "Server has a weak ephemeral Diffie-Hellman public key" VMWare Data Protection

Introduction Went to log into my VDP server today and got this: Server has a weak ephemeral Diffie-Hellman public key. So here are th...

Introduction

Went to log into my VDP server today and got this:
Server has a weak ephemeral Diffie-Hellman public key.
So here are the steps to fix the error.

Steps (5 total)

1

SSH into VDP server

Expand

SSH into your VDP server and login.
Then su to root.

2

Navigate to the Tomcat config directory

cd /usr/local/avamar-tomcat/conf/
Then open server.xml with VIM

3

Find This line in the config.

Expand

<!--<Connector SSLEnabled="true" Server="Avamar" ciphers="TLS_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_RSA_WITH_AES_128_CBC_SHA,TLS_DHE_DSS_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_DHE_RSA_WITH_AES_256_CBC_SHA,TLS_DHE_DSS_WITH_AES_256_CBC_SHA" clientAuth="false" maxKeepAliveRequests="1" maxThreads="150" port="8543" maxHttpHeaderSize="32768" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https" secure="true" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2,SSLv2Hello"/>-->

4

Replace the Line in step 3 with this.

<Connector SSLEnabled="true" Server="Avamar" ciphers="TLS_DHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA" clientAuth="false" maxKeepAliveRequests="1" maxThreads="150" port="8543" maxHttpHeaderSize="32768" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https" secure="true" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2,SSLv2Hello"/>

Then write the changes with :wq

5

Reboot and Test

Reboot the VDP server.
Then test the login.
VDP should be working again.