ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Dismissed Ciphers cause connection problem with CISCO devices using MobaXterm
Article ID: 241121
Updated On:
Products
CA Privileged Access Manager (PAM)
Issue/Introduction
We configured MobaXterm and it's working with most devices. However, there's some CISCO switches (Cisco Catalyst 2960 release 12.2(25r)SEE6 ) that work with Mindterm but give "Authentication failed" with Moba and Putty. We have enabled all the available ciphers, not just the default ones.
Cause
This ciphers are dismissed : aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc as are regarded weak and have been taken out of the list for the SSH Proxy in newer PAM releases.
Environment
Release : 4.0.x and 3.4.x
Component :
Resolution
If the customer absolutely needs this, then it should be opened a case in support.
PAM Support can assist in getting them enabled again
Feedback
Yes
No
Powered by
