Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2355
Views
0
Helpful
2
Replies

Support for HMAC-SHA256?

graham_costa
Level 1
Level 1

‎08-07-2007 12:34 AM - edited ‎03-11-2019 03:54 AM

Hi,

I'm trying to find if any of the various flavours Cisco router/firewall would be capable of establishing an IPsec session that used HMAC-SHA256 in the Authentication field of the ESP header? So far I've drawn a blank and can only find support for SHA-1 implementations.

Regards,

GRAHAM.

Labels:
0 Helpful
2 Replies 2

carenas123
Level 5
Level 5

‎08-13-2007 10:24 AM

I think PIX and ASA support HMAC-SHA with 256 bit key for ESP. Following link may help you

http://www.cisco.com/en/US/products/sw/secursw/ps2308/products_configuration_example09186a00801e71c0.shtml

0 Helpful

rigoberto.cintron
Level 1
Level 1
In response to carenas123

‎08-13-2007 12:55 PM

I don't believe Cisco support HMAC-SHA256 right now. They support HMAC-SHA1 with AES 256 for payload encryption.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card