Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
631
Views
0
Helpful
1
Replies

IPS Device Manager 7.0(4), ssl weak encryption

wilson_1234_2
Level 3
Level 3

‎07-20-2011 08:51 AM - edited ‎03-10-2019 05:25 AM

We recently had a security audit and got alerts on the IPS devices has having "SSL Server Supports Weak Encryption".

Has anyone experienced this, and what can be done?

I have not ben able to find anything on Cisco's site about this.

Labels:
0 Helpful
1 Reply 1

denizkaya
Level 1
Level 1

‎07-22-2011 03:22 AM

There is no way to change ssl encryption algorithms supported on these devices at the moment. Actually it is not only about IPS devices, if you had http server enabled lets say on access switches and had an audit for them you would receive the same or similar results.

As an additional security, you should better restrict management access from certain trusted host in tls configuration in IPS CLI.

Cheers,

Deniz

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card