Port 2821 Low level encryption

Question

I'm getting a positive hit on a&nbsp;retina scan&nbsp;for low level encryption (Audit ID:
	12237). The scan states that it is set to 56 bit. I need to change to
	128-bit to comply.
	
	It is getting the hit on port 2821 and the service on the port is
	vrts-at-port. This is on the server that I am getting the hit.
	
	Any idea as to how I can change this or why I should not change?
	
	Everything I am finding is pointing me to the client application.

nicolai · Accepted Answer

Port 2821 is&nbsp;VERITAS Authentication Service. Netbackup access control used that port before netbackup 7.5. In 7.5 and newer the authentication service uses 1556.

But 2821 may be used for at lot of other Symantec software. So what Symantec software do you have on the client ?

jtbsanadmin · Answer

First, thank you for your reply.

NetBackup 7.0 Linux as far as I know.&nbsp; Don't think Norton is on there.

&nbsp;

nicolai · Answer

I found this tech note - it is for Windows. You mentioned the client is Linux:

OpsCenter 7.x Server installations may be fail vulnerability assessments due to low strength SSL ciphers being supported by the Symantec Product Authentication Service(VRTSat) component.

http://www.symantec.com/docs/TECH142600

nicolai · Answer

Storage Foundation uses port 2821 (VrtsAT) as well.&nbsp;

http://www.symantec.com/docs/TECH158411

&nbsp;

jtbsanadmin · Answer

Is there a Linux fix in the database?

crz · Answer

I think the "fix" is to upgrade to at least 7.5.&nbsp; (Preferably 7.6.0.2!)

Forum Discussion

Port 2821 Low level encryption

7 Replies

Related Content

Re: Import failing

NetBackup - Tape level Encryption

Key Management Service (KMS) encryption

configure NetBackup Client Encryption Option

Unable to perform file restore on bitlocker encrypted VM's

Recent Discussions

command: bperror

MS-SharePoint policy restore error (2804) .

How to restore a backup

How to configure RBAC

10 years old netbackup appliance database service down, ssl certification out date