Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
2
Replies

Deleting MD5 or 96-bit MAC algorthms

Go to solution
John N
Level 1
Level 1

‎04-12-2024 10:39 AM

I have been instructed to delete any weak MD5 or 96-bit MAC algorithms on all my switches.  My current setup I have the following:

hmac-sha2-256

hmac-sha2-512 

hmac-sha1

hmac-sha1-96 

 

Out of these which would be considered to be weak MAC algorithm? 

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Georg Pauwen
VIP
VIP

‎04-12-2024 11:30 AM

Hello,

the SHA1 algorithms are definitely considered weak...

View solution in original post

0 Helpful

Go to solution
John N
Level 1
Level 1

‎04-15-2024 11:29 AM

So very interesting thing.... If anyone has this vulnerability, I hope this helps...If you delete hmac-sha1-96 the vulnerability goes away.  The hmac-sha1 can stay.   Thanks for the help. 

 

 

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Georg Pauwen
VIP
VIP

‎04-12-2024 11:30 AM

Hello,

the SHA1 algorithms are definitely considered weak...

0 Helpful

Go to solution
John N
Level 1
Level 1

‎04-15-2024 11:29 AM

So very interesting thing.... If anyone has this vulnerability, I hope this helps...If you delete hmac-sha1-96 the vulnerability goes away.  The hmac-sha1 can stay.   Thanks for the help. 

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card