Communication Security Settings The following topics describe the PowerFlex system's security settings. Communication security settings enable the establishment of secure communication channels between the product components, as well as between product components and external systems or components. Child TopicsReplication securityThere are new security features to ensure that PowerFlex replication can be used securely. SDC authenticationThis feature ensures security by applying CHAP (Challenge-Handshake Authentication Protocol) based authentication of the SDC to the MDM for access to the system in general and to mapped volumes in particular. This prevents the SDC from accessing unauthorized volumes. Once enabled, the SDC internally performs mutual CHAP authentication with the SDSs and the SDRs with no manual intervention. Port usage and change default portsBefore installing or upgrading PowerFlex, ensure that the ports listed in the table are not used by other processes. Network encryptionThe PowerFlex system performs network encryption for its different components. Remove TLSv1.0/1.1 from sslEnabledProtocols parameterPowerFlex Gateway does not support TLSv1.0/1.1. Enable OpenSSL FIPS compliance Enable the implementation of OpenSSL Federal Information Processing Standards (FIPS) compliance in the MDM for communication between the external components, including the PowerFlex GUI, PowerFlex Gateway, and CLI, to the MDM. It is also enabled for any other usage of the OpenSSL library.