Cannot connect to SSH Device with MAC (Message Authentication Code) set in sshd_config.
search cancel

Cannot connect to SSH Device with MAC (Message Authentication Code) set in sshd_config.

book

Article ID: 6504

calendar_today

Updated On: 11-16-2023

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM) CA Privileged Access Manager (PAM)

Issue/Introduction

I am trying to setup a Red Hat 7.x SSH Endpoint type in Privileged Identity Manager Enterprise Manager but I am getting the following message. 

Error: Create administrative account for endpoint failed: details:Cannot find the account to be created in the target system: endpointType: SSH Device ,endpointName:Red Hat, accountName:root. Check if the User Login is case sensitive..

I have recently updated to Red Hat 7.x and setup strict security standards for SSHD by using the following MACs: 

hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com

Environment

Red Hat 7.x with Message Authentication Codes set in sshd_configEnterprise Manager 12.8.x and 12.9.x

Cause

This is caused by the version of Ganymed SSH-2 for Java we use within the product. 

Resolution

An updated version can be provided by opening support case by asking for fix T6FA002.