Preview Tool

Cisco Bug: CSCus02961 - Weak HMAC options on SSH for WLC, SHA2 support

Last Modified

Nov 16, 2018

Products (1)

  • Cisco 5500 Series Wireless Controllers

Known Affected Releases

7.4(121.0) 7.6(130.0) 8.0(100.0)

Description (partial)

WLC is offering weak HMAC options, and there is no direct way to configure them, nor there is a 
way to force SHA2

Normal mode:
[LOCAL] : Available Remote Send Macs = hmac-md5,hmac-sha1,hmac-ripemd160,hmac-,hmac-sha1-96,hmac-md5-96

FIPS mode:
[LOCAL] : Available Remote Send Macs = hmac-sha1

SSH connection
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.