Upgrade SSH and SSL version

Forum|Forum|10 years ago
November 27, 2015
1 reply
19576 views

I need to do some modification on my Fortigate firewall 200D and for this I need some help. I am using SSH V1 and now i need to change it to SSH V2 and i also need to upgrade SSL V1 to higher one and increase encryption ciphers with a key length of at least 128 bits.

anil_nayak_FTNT

Staff

1. to change it to SSH V2. -->Please configure the following , Supported SSH protocol versions, ciphers, and bit strengths include SSH version 2 with AES-128, 3DES, Blowfish, and SHA-1 config system global set admin-ssh-v1 disable <--- end

2. to upgrade SSL V1 to higher one and encryption ciphers with a key length of at least 128 bits

config system global set strong-crypto enable <-------- end

http://kb.fortinet.com/kb/microsites/search.docmd=displayKC&docType=kc&externalId=FD36913&sliceId=1&docTypeID=DT_KCARTICLE_1_1&dialogID=8750383&stateId=0%200%2073422324

Regards Anil

emnoc

New Member

Also don't forget sslvpn settings

config vpn ssl setting

set algorithm high

set sslv3 disable

set sslv2 disable

end

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded