Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2529
Views
0
Helpful
2
Replies

HMAC support on ASA

bruce.thornton
Level 1
Level 1

‎03-24-2020 08:06 PM

How can I tell if may ASA 5525-X supports the following:

hmac-sha2-256
hmac-sha2-384
hmac-sha2-512
and if it does how do I enable it. My software ver is :

 

Cisco Adaptive Security Appliance Software Version 9.7(1)24

0 Helpful
2 Replies 2

Cristian Matei
VIP Alumni
VIP Alumni

‎03-25-2020 12:33 AM

Hi,

 

   Whatever is part of the Suite B (Next Generation Algorithms), including what you're asking for, is only supported on the ASA for IPsec tunnels build over IKEv2, so not for IPsec tunnel over IKEv1. With IKEv2 IPsec tunnels, you can use the Suite B algorithms for both the IKEv2 and IPsec tunnel (or only for one, you choose), while with IKEv1 IPsec tunnels, you can't use Suite B algorithms for IKEv1 or IPsec tunnel.

 

Regards,

Cristian Matei.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card