ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Dismissed Ciphers cause connection problem with CISCO devices using MobaXterm

book

Article ID: 241121

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

We configured MobaXterm and it's working with most devices. However, there's some CISCO switches (Cisco Catalyst 2960 release 12.2(25r)SEE6 ) that work with Mindterm but give "Authentication failed" with Moba and Putty. We have enabled all the available ciphers, not just the default ones.

 

Cause

This ciphers are dismissed : aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc  as are regarded weak and have been taken out of the list for the SSH Proxy in newer PAM releases.

Environment

Release : 4.0.x and 3.4.x

Component :

Resolution

If the customer absolutely needs this, then it should be opened a case in support.

PAM Support can assist in getting them enabled again