03-08-2021 07:24 AM
Dears,
I am having vulnerabilities issue with SSH weak algorithm.Can someone help how to change algorithm used by SSH on Cisco Switch Cat4500
IOS : Version 15.0(2)SG
Rommon : 12.2
03-08-2021 07:49 AM - edited 03-08-2021 07:49 AM
Hi,
If the encryption is too weak, you can make it stronger with this command:
crypto key generate rsa modulus <360-4096>
Have a look at the config guide:
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/XE3-8-0E/15-24E/configuration/guide/xe-380-configuration/x509v3.html
HTH
03-08-2021 07:54 AM
I am having a vulnerabilities issue with SSH weak algorithm. - what vulnerability you got now. Do you have SSH with version 2 ?
show post - show run | in ssh and show ip ssh
BB
=====Preenayamo Vasudevam=====
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
03-08-2021 08:41 AM
03-08-2021 09:30 AM
Can you post the example of "vulnerability still persists"
03-09-2021 12:55 AM
I tried to increse the length of Key the observe next scan result.
Thanks for support !
03-09-2021 02:26 AM
Sure, but check the device overhead also before increasing the higher level.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
