Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3824
Views
0
Helpful
5
Replies

70658 - SSH Server CBC Mode Ciphers Enabled and 71049 - SSH Weak MAC Algorithms Enabled

vinod.tiwari16
Level 1
Level 1

‎09-20-2017 02:19 AM - edited ‎03-01-2019 06:08 PM

Hi,

 

I'm facing SSH Server CBC Mode Ciphers Enabled and SSH Weak MAC Algorithms Enabled with Cisco 2960x and 3750x switshes.switches IOS version is 15.0(2).

 

Please help to Remediate the same.

 

Thank You

Labels:
0 Helpful
5 Replies 5

Flavio Miranda
VIP
VIP

‎09-20-2017 10:14 AM

Hi,

Have you tried this:

> enable
# configure terminal
(config)# ip ssh server algorithm encryption aes128-ctr aes192-ctr aes256-ctr
(config)# ip ssh server algorithm mac hmac-sha1

Also, make sure you are running ssh version 2

(config)# ip ssh version 2

 

0 Helpful

vinod.tiwari16
Level 1
Level 1
In response to Flavio Miranda

‎09-20-2017 12:12 PM

Hi,

 

This Command is not getting accepted by Cisco 2960x and 3750x IOS 15.0 (2).

 

Is there Solution for IOS 15.0 (2).

 

Thank You

 

0 Helpful

Flavio Miranda
VIP
VIP
In response to Flavio Miranda

‎09-20-2017 07:40 PM

But ip ssh version 2 they support. Maybe this is enough. Had you tried?

0 Helpful

vinod.tiwari16
Level 1
Level 1
In response to Flavio Miranda

‎09-22-2017 01:20 AM

Yes.. But problem is same..

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to vinod.tiwari16

‎09-22-2017 02:46 AM

As advised in the other posts you have made, you need to upgrade to a newer IOS in order to get support for the stronger ciphers.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents