05-30-2022 10:40 PM
Hi Guys,
I have a Cisco SF300 switch. We have done VAPT and found that vulnerability "SSH Weak Key Exchange Algorithms Enabled". I need to disable this. Please suggest how to resolve this issue. How i can login to switch via ssh more securley?
Regards,
Rakesh
05-30-2022 11:51 PM
- Use latest firmware for the device , (if not yet done) , check if that can help.
M.
05-31-2022 10:19 PM
The current running Firmware version is 1.4.11.5 and it is the latest firmware.
05-31-2022 01:30 AM
check some Vulnerable and guide lines :
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170920-sbms
BB
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
05-31-2022 10:36 PM
As per the shared link, there is no workaround that addresses this vulnerability.
05-31-2022 10:38 PM
Is there any alternate way to access the switch via SSH more securely? Is there any more option in ssh authentication?
06-01-2022 05:04 AM
Hi,
I got this document on the internet, public key authentication for ssh on cisco switches.
https://helpdeskgeek.com/how-to/enable-public-key-authentication-ssh-cisco-sg300-switches/
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
