https://community.cisco.com/t5/network-security/ips-device-manager-7-0-4-ssl-weak-encryption/m-p/1718365#M56582 <P>We recently had a security audit and got alerts on the IPS devices has having "SSL Server Supports Weak Encryption".</P><P></P><P>Has anyone experienced this, and what can be done?</P><P></P><P>I have not ben able to find anything on Cisco's site about this.</P> Sun, 10 Mar 2019 12:25:21 GMT wilson_1234_2 2019-03-10T12:25:21Z https://community.cisco.com/t5/network-security/ips-device-manager-7-0-4-ssl-weak-encryption/m-p/1718365#M56582 <P>We recently had a security audit and got alerts on the IPS devices has having "SSL Server Supports Weak Encryption".</P><P></P><P>Has anyone experienced this, and what can be done?</P><P></P><P>I have not ben able to find anything on Cisco's site about this.</P> Sun, 10 Mar 2019 12:25:21 GMT https://community.cisco.com/t5/network-security/ips-device-manager-7-0-4-ssl-weak-encryption/m-p/1718365#M56582 wilson_1234_2 2019-03-10T12:25:21Z https://community.cisco.com/t5/network-security/ips-device-manager-7-0-4-ssl-weak-encryption/m-p/1718366#M56585 <HTML><HEAD></HEAD><BODY><P>There is no way to change ssl encryption algorithms supported on these devices at the moment. Actually it is not only about IPS devices, if you had http server enabled lets say on access switches and had an audit for them you would receive the same or similar results. </P><P></P><P>As an additional security, you should better restrict management access from certain trusted host in tls configuration in IPS CLI.</P><P></P><P>Cheers,</P><P>Deniz</P></BODY></HTML> Fri, 22 Jul 2011 10:22:46 GMT https://community.cisco.com/t5/network-security/ips-device-manager-7-0-4-ssl-weak-encryption/m-p/1718366#M56585 denizkaya 2011-07-22T10:22:46Z