[KBA-78972] Recording issue after downgrading default Security Center version on SV-100E, SVA-100E, or SV-300E appliances - SV-100E 16.0 | SVA-100E 16.0 | SV-300E 16.0

series
SV-100E 16.0 | SVA-100E 16.0 | SV-300E 16.0
revised_modified
2019-08-06

[KBA-78972] Recording issue after downgrading default Security Center version on SV-100E, SVA-100E, or SV-300E appliances

This article explains why the system might fail to record video after you downgrade the default Security Center version that comes pre-installed on the SV-100E, SVA-100E, or SV-300E appliance to version 5.6 SR3 or earlier.

Applies to: SV-100E 16.0 | SVA-100E 16.0 | SV-300E 16.0

Symptoms

After you downgrade the default Security Center version that was pre-installed on an SV-100E, SVA-100E, or SV-300E appliance to version 5.6 SR3 or earlier, Genetecâ„¢ processes stop communicating with the SQL services and as a result the system fails to record video. G64 files are not created on the drives and entries are not added in the Archiver role database.

You do not receive any errors or warnings about this issue. You can check if this issue is occurring by generating an Archive storage details report or searching the associated drives to see if any files were recorded.

IMPORTANT: In some cases, downgrading also causes a Service unavailable error message in Server Admin.

Cause

SV-100E, SVA-100E, and SV-300E appliances come pre-installed with Security Center and default registry configurations that are necessary for server hardening. Some of these registry configurations are not compatible with Security Center versions 5.6 SR3 and earlier.

Workaround

To fix the recording issue, do the following:
CAUTION:
If you perform the following workaround, you are lowering the hardening level of your SV appliance.
  1. Open the Windows Registry Editor.
  2. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server and edit the following registry keys:
    Enabled
    dword:00000001
    DisabledByDefault
    dword:00000000
  3. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client and edit the following registry keys:
    Enabled
    dword:00000001
    DisabledByDefault
    dword:00000000
  4. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\Triple DES 168 and edit the following registry key:
    Enabled
    dword:00000001
  5. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\Triple DES 168/168 and edit the following registry key:
    Enabled
    dword:00000001
  6. Restart your SV appliance.

Status

This issue is fixed in SV-100E, SVA-100E, and SV-300E image version 16.1.