Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
527
Views
0
Helpful
0
Replies

Disabling Weak SSH ciphers on IPS

s.ranjane
Level 1
Level 1

‎11-16-2016 03:09 AM - edited ‎03-20-2019 09:09 PM

Hi Cisco Team,

We have Cisco IPS configured for SSH access, during the security audit following issues were reported:

1. The SSH server is configured to support Cipher Block Chaining (CBC) encryption.
2. The SSH server is configured to allow either MD5 or 96-bit MAC algorithms, both of which are considered weak.

I could not find any documentation to close the audit finding on IPS, we are running IPS version 7.1(11)E4. Request your advice. 

Thanks

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents