My prod & dev MoM (EM) server has come under a Nessus scan vulnerability that needs immediate remediation. I've also opened up a case (01285297) with CA Support. I'd also like to put it out the Community in-parallel to get additional assistance.
Since this is a security hit for my org, it needs to be resolved ASAP or it could affect "authority to operate" for APM altogether.
Thanks in advance for any/all help with this issue.
Here are the details of the vulnerability:
42873 - SSL Medium Strength Cipher Suites Supported
The remote service supports the use of medium strength SSL ciphers.
The remote host supports the use of SSL ciphers that offer medium strength encryption. Nessus regards medium strength as any encryption that uses key lengths at least 64 bits and less than 112 bits, or else that uses the 3DES encryption suite.
Note that it is considerably easier to circumvent medium strength encryption if the attacker is on the same physical network.