Guest

Preview Tool

Cisco Bug: CSCvs29183 - WLC still shows weak SSH encryption algorithms with encryption high enabled

Last Modified

Jun 09, 2020

Products (1)

  • Cisco 5500 Series Wireless Controllers

Known Affected Releases

8.10(105.0) 8.5(140.0) 8.5(151.0) 8.8(120.0)

Description (partial)

Symptom:
It is expected that the option "config network ssh cipher-option high" would remove the weak algorithms from WLC list of supported algorithms for SSH connections.
However, if we do a ssh scan using a tool like nmap, the WLC lists exactly the same algorithms before and after applying the command and rebooting the WLC.

Customers expect that the weak algorithms to be removed from the WLC supported algorithms list after enabling high ciphers for SSH connections.

Conditions:
The WLC CLI command "config network ssh cipher-option high" is configured.

Related Community Discussions

Aironet 1815i Access Point Setup Issue
Hello,   I recently purchased three Aironet 1815i Access Points.   I was able to get them configured out of the box and it appeared everything was up and running.   I am using version 8-5-161-0 and using Mobility Express.   I was adding additional Cisco SG350 switches to my network and re-configuring the system to include multiple VLANs so I decided to factory reset the AP’s and install them on to the final infrastructure.   I disconnected all three units and then did a factory reset (over 20s but ...
Latest activity: Aug 08, 2020
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.