cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
AMA event- Migrating Existing Networks to Cisco ACI
626
Views
0
Helpful
0
Replies
Highlighted
Participant

Cisco WAVE 7541 version 4.4.5a Fails PCI scan

We are scanning our WAAS evironment for PCI compliance and the device with the latest code fails.  Has anyone else had issues with PCI scans of a WAAS device?  The main thing that it fails on is the version of Apache, SSH version, and self-signed certificates.

We have disabled ssh version 1 from the CM and can see that no sshd version 1 is in the config, yet we are able to ssh into the box version 1.  We are also able to telnet on port 22 to the box and we get the following response: 

SSH-1.99-OpenSSH_3.5p1

On the cert issues one of the items is that the WAVE has a self-signed cert, which from what I can tell can't be removed per bug/enhancement

CSCte05426.

Has anyone else had to do a PCI scan on these devices and what were the results?

Thanks,

Joe

Everyone's tags (5)
CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards