Guest

Preview Tool

Cisco Bug: CSCul01562 - CSM ENH add support for AES256-SHA1 while communicating with ASA

Last Modified

Nov 27, 2020

Products (1)

  • Cisco Security Manager

Known Affected Releases

4.4(0)SP2

Description (partial)

Symptom:
CSM does not support AES256-SHA1 encryption and authentication for https connections.
This issue due to limitation of JRE 1.7.  Cisco Security Manager does not include this extension. Since JRE default will not contain this extension.

Conditions:
When you configure 'ssl encryption aes256-sha1 on ASA', CSM is:
"Unable to Communicate with Device The Security Manager server and device could not negotiate the security level. Please generate a new certificate on the device and retry the operation."

Applicable to all CSM versions.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.