Cisco ASA - SHA vs SHA1

Unanswered Question
Nov 7th, 2010

I am using a Cisco ASA5510 IOS 8.2(3), I will be setting up an L2L (Site to Site VPN) with a non cisco device which supports SHA1 or MD5.

In reviewing the hash options using ASDM manager I noticed that there are only 2 options - SHA or MD5.  I found one previous article that suggests using

SHA on my end with SHA1 on the peer end will work?

Can someone confirm if indeed this is the case? and are there any other hashing alternatives on the ASA 5510 other than SHA or MD5 available?


I have this problem too.
1 vote
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.5 (2 ratings)
Federico Coto F... Sun, 11/07/2010 - 11:28


The hashing algorithm availables for phase 1 and phase 2 are MD5 and SHA/SHA-1

So, choosing SHA on the ASA side will work with SHA-1 on the other side.


Entuitesi Sun, 11/07/2010 - 13:00

Thanks for the response! I suspected that this was indeed the case. Thanks for verifying.


This Discussion