What to do when you get Cipher error while copying support connection file from MAC

By esupport posted Jul 21, 2017 02:13 AM

  
Problem:


From 8.2.4 version onwards when we have to enable support connection we have to copy support_connection.tar file to Airwave server using scp and this can be done using a MAC or Unix platform.
When we do this using the MAC we might come across the below Cipher error.

no matching cipher found: client aes128-cbc,aes192-cbc,aes256-cbc server chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com



Diagnostics:


The reason for this issue is Mac is looking for a different set of ssh ciphers, we need to have this added to the sshd_config on the Mac.



Solution


We can follow the below steps on MAC to do this,

  • Enable Remote login by navigating to System Preferences -> Sharing -> Check Remote Login box

  • Edit sshd_config file    

# sudo vi /etc/sshd_config

  • Add the below lines towards the end of the file

Ciphers aes128-cbc,aes192-cbc,aes256-cbc
MACs hmac-sha1,hmac-sha2-256,hmac-sha2-512
KexAlgorithms diffie-hellman-group14-sha1,ecdh-sha2-nistp256,ecdh-sha2-nistp384
ServerKeyBits 2048

  • Restart SSH on the Mac

# sudo launchctl unload /System/Library/LaunchDaemons/ssh.plist
# sudo launchctl load –w /System/Library/LaunchDaemons/ssh.plist

Now we should be able to copy the file from MAC to Airwave without the cipher error.

 

 

0 comments
0 views