Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
668
Views
5
Helpful
3
Replies

SSH problem

Vusal jafarov
Level 1
Level 1

‎01-17-2023 05:12 AM - edited ‎01-17-2023 05:16 AM

Hi everyone, I am working with cisco switch WS-C3750X-24,

On my running configuration there is nothing under VTY and console line it like this:

line con 0
line vty 5 15

there is not any information regarding "transport input SSH or telnet."

But i am getting vulnerability regarding SSH weak key exchange algorithms enabled and SSH server CBC mode cypher enabled.

So, my question is that how can I see SSH CBC mode cyphers and key exchange algorithms?

or how can I solve the vulnerabilities which I mentioned above?

"sh ip ssh" command result is showing only version of SSH and that is all.

Thanks, in advance.

Labels:
3 Replies 3

Georg Pauwen
VIP
VIP

‎01-17-2023 05:55 AM

Hello,

which IOS version and which image/template are you running ?

Do you see anything when you add a domain name and generate an RSA key ?

3750(config)#ip domain-name cisco.com
3750(config)#crypto key generate rsa modulus 2028

0 Helpful

Vusal jafarov
Level 1
Level 1
In response to Georg Pauwen

‎01-17-2023 06:20 AM

I am using (C3750-ADVIPSERVICESK9-M) image and 12.2(46) SE IOS version.

Domain name is added but could not find something detailed about crypto key.

0 Helpful

Karsten Iwen
VIP
VIP

‎01-17-2023 06:20 AM

On this old platform you can't configure these settings. They were introduced in newer IOS releases that the 3750-X is not capable to run.

0 Helpful
Customers Also Viewed These Support Documents