cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
124
Views
0
Helpful
2
Replies
Highlighted
Beginner

HMAC support on ASA

How can I tell if may ASA 5525-X supports the following:

hmac-sha2-256
hmac-sha2-384
hmac-sha2-512
and if it does how do I enable it. My software ver is :

 

Cisco Adaptive Security Appliance Software Version 9.7(1)24

2 REPLIES 2
Hall of Fame Guru
Highlighted
Rising star

Re: HMAC support on ASA

Hi,

 

   Whatever is part of the Suite B (Next Generation Algorithms), including what you're asking for, is only supported on the ASA for IPsec tunnels build over IKEv2, so not for IPsec tunnel over IKEv1. With IKEv2 IPsec tunnels, you can use the Suite B algorithms for both the IKEv2 and IPsec tunnel (or only for one, you choose), while with IKEv1 IPsec tunnels, you can't use Suite B algorithms for IKEv1 or IPsec tunnel.

 

Regards,

Cristian Matei.