Network Management

Reply
New Contributor
Posts: 4
Registered: ‎06-21-2016

Airwave SSH Ciphers

I am following up with a customer after they had a security audit regarding SSH Ciphers on Airwave.

 

I found the following article showing me how to disable obsolete ciphers: https://community.arubanetworks.com/t5/Monitoring-Management-Location/How-to-disable-obsolete-SSH-cipher-MAC-algorithms/ta-p/292311

 

HOWEVER, with Airwave 8.2.4 code, we now have a limited menu and I can't seem to get CLI access to AMP to follow the article above.

 

Could someone please advise how to get CLI access or inform me what SSH ciphers are currently enabled with AMP 8.2.4?

 

Thanks in advance!

Aruba Employee
Posts: 450
Registered: ‎02-19-2015

Re: Airwave SSH Ciphers

Hi

 

Please check below link which explain in detail about SSH Ciphers

https://community.arubanetworks.com/t5/Wireless-Access/SSH-and-AES-CBC/td-p/248919

 

If still dont want to see those ciphers, open TAC ticket.

 

Regards,

Pavan

If my post addresses, your query give kudos:)

Moderator
Posts: 1,270
Registered: ‎10-16-2008

Re: Airwave SSH Ciphers

The 8.2.4 ciphers should not need to be updated as the defaults comply with the notice of obsolete encryptions.

Here's the list of ciphers we're using in 8.2.4:

 

# cat /etc/ssh/sshd_config

...

Ciphers aes128-cbc,aes192-cbc,aes256-cbc
MACs hmac-sha1,hmac-sha2-256,hmac-sha2-512
KexAlgorithms diffie-hellman-group14-sha1,ecdh-sha2-nistp256,ecdh-sha2-nistp384
ServerKeyBits 2048

...

 

Hope this helps.


Rob Gin
Senior QA Engineer - Network Services
Aruba Networks, a Hewlett Packard Enterprise Company
Search Airheads
Showing results for 
Search instead for 
Did you mean: