To ensure communication confidentiality and data transfer integrity, this operation enables you to configure TLS policies based on site requirements.
Procedure
- Choose Settings > Object Service Settings > Security Settings > TLS Policy.
- Configure TLS policies. Table 1 describes related parameters.
If you are about to modify the TLS policies of the provisioning orchestration engine (POE) and object service controller (OSC), this operation restarts POE and OSC. Services will be interrupted for 3 minutes after POE and OSC restart. You are advised to modify the TLS policies during off-peak hours.
Table 1 TLS policy parameters Parameter
Description
Provisioning Orchestration Engine
Interconnects with BSS to implement user status updating and other functions.
Possible values are as follows:
- TLS 1.1 Policy: The POE supports TLS 1.1 and TLS 1.2 policies.
- TLS 1.2 Policy: The POE supports the TLS 1.2 policy.
[Default value]
TLS 1.2 Policy
Object Service Controller
Indicates an access point for the object service by providing an object service interface. It processes requests initiated by clients and sets up object transmission channels to implement access control over requests initiated by clients. In addition, it manages metadata, collects information about user traffic and operations, and provides functions such as data routing, striping, and fragmenting.
Possible values are as follows:
- TLS 1.1 Policy: The OSC supports TLS 1.1 and TLS 1.2 policies.
- TLS 1.2 Policy: The OSC supports the TLS 1.2 policy.
[Default value]
TLS 1.2 Policy
- Click Save.
- Confirm your operation as prompted.
Follow-up Procedure
After configuring or modifying TLS policies, you need to synchronize the modification to other clusters in the same region.