Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Connectivity to PIX/ASA is not attained by the Cisco VPN client when DES with SHA is configured, and the user receives the "atts not acceptable" error message

Core issue

This happens because the Data Encryption Standard (DES)/Secure Hash Algorithm (SHA) is not supported by the VPN client.


In order to resolve this issue, try this workaround:

Configure the encryption to 3DES instead of DES with SHA. If the PIX Firewall is not configured for 3DES, try DES with Message Digest 5 (MD5).

Refer to these documents for more information:

Version history
Revision #:
1 of 1
Last update:
‎06-22-2009 04:45 PM
Updated by:
Labels (1)