Cisco Bug: CSCul01562 - CSM ENH add support for AES256-SHA1 while communicating with ASA
Nov 27, 2020
- Cisco Security Manager
Known Affected Releases
Symptom: CSM does not support AES256-SHA1 encryption and authentication for https connections. This issue due to limitation of JRE 1.7. Cisco Security Manager does not include this extension. Since JRE default will not contain this extension. Conditions: When you configure 'ssl encryption aes256-sha1 on ASA', CSM is: "Unable to Communicate with Device The Security Manager server and device could not negotiate the security level. Please generate a new certificate on the device and retry the operation." Applicable to all CSM versions.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases