Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7649
Views
5
Helpful
1
Replies

SSL Self Signed Certificate Findings on Nessus Scans on Cisco 3750 - 24PS-E

Go to solution
gbenoit83
Level 1
Level 1

‎03-22-2018 08:09 AM - edited ‎02-21-2020 07:33 AM

When our IA team performed security scans, an SSL Self-Signed medium finding was discovered along with other SSL findings. How do I resolve this issue? We do not use a CA, just a generated cipher and cert by the switch itself along with all the other switches on our network. How do i go in too check the SSLs, change, delete or update? The switch is currently running C3750-IPSERVICESk9-M 12.2(55)SE11 IOS. Would an IOS upgrade resolve any of the issues below? I cannot find any information on the possibility of it solving any of these issues.

 

Below are the other findings:

SSL Certificate cannot be trusted

SSL Version 2 and 3 Protocol Deletion

SSL Weak Cipher Suites Supported

SSL Certificate sighned using weak hashing algorithm 

SSL Medium Strength cipher suites supported 

SSL Self signed certificate 

SSLv3 Padding Oracle on Downgraded Legacy Encryption Vulnerability (POODLE)

NTP Mode 6 Scanner

2 people had this problem
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
mburnno
Level 1
Level 1

‎03-22-2018 12:14 PM

Greg,

 

If you use the commands below this should clear up your findings.

 

no ip http secure-server
no ip http server
 

View solution in original post

1 Reply 1

Go to solution
mburnno
Level 1
Level 1

‎03-22-2018 12:14 PM

Greg,

 

If you use the commands below this should clear up your findings.

 

no ip http secure-server
no ip http server
 
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card