FortiSOAR: Security Orchestration and Response software provides innovative case management, automation, and orchestration. It pulls together all of an organization's tools, helps unify operations, and reduce alert fatigue, context switching, and the mean time to respond to incidents.
This article describes how to fix the nginx SSL Depreciation warnings that appear in logs for FortiSOAR releases that have been upgraded from 5.2.0 and earlier to 7.x series.
The nginx SSL Depreciation warnings such as the following included in logs:
Jan 16 05:19:15 ar-master-1 nginx[39692]: nginx: [warn] the "ssl" directive is deprecated, use the "listen ... ssl" directive instead in /etc/nginx/conf.d/cyops-api.conf:140
These nginx SSL warnings are generated due to the usage of deprecated SSL directives.
Scope
FortiSOAR 5.2.0 and earlier releases.
Solution
To resolve this issue, do the following: 1) Download the attached file (nginx-ssl-patch.zip) to the FortiSOAR instance.
2) Unzip the file.
3) Switch to 'root' user:
sudo su
4) Set the file as executable:
chmod a+x nginx-ssl-patch
5) Run the file:
./nginx-ssl-patch
The nginx-ssl-patch script updates the nginx configuration files to replace the deprecated SSL directives with the correct ones.
