Seems Chrome 45 and Firefox 40 are blocking DHE ciphers
We now get the following errors when browsing to the vRO Web Interface (and Configuration interface)
Tested this with the appliance versions of both vRO 6.0.1 and 6.0.2
Has anyone else experienced this? And are there any better workaround than using the "--cipher-suite-blacklist=" parameter in Chrome?
I've raised a support ticket with VMware, but thought it would be an idea to post here as well.
Chrome:
Server has a weak, ephemeral Diffie-Hellman public key
ERR_SSL_WEAK_SERVER_EPHEMERAL_DH_KEY
Hide details
This error can occur when connecting to a secure (HTTPS) server. It means that the server is trying to set up a secure connection but, due to a disastrous misconfiguration, the connection wouldn't be secure at all!
In this case, the server needs to be fixed. Google Chrome won't use insecure connections in order to protect your privacy.
Learn more about this problem.
Firefox:
Secure Connection Failed
An error occurred during a connection to vro-appliance-hostname:8283. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the web site owners to inform them of this problem.