Troubleshooting Tip: Resolving 'Connection Error: ...

FortiSwitch

FortiSwitch: secure, simple and scalable Ethernet solutions

Article Id 366020

Description

This article provides guidance on troubleshooting the error 'Connection Error: System.Exception: Could not negotiate mac algorithm', which is encountered when attempting to establish an SSH session with a FortiSwitch.

Scope

FortiSwitch.

Solution

When trying to SSH into a FortiSwitch using SolarWinds, the following error message may appear:

HMacList: hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-sha1-96,hmac-sha2-256-etm,hmac-sha2-512-etm

[3374ebda] [08/13/2024 14:44:10.416] Connection Error: System.Exception: Could not negotiate mac algorithm

This issue typically arises due to a mismatch in supported SSH algorithms between the FortiSwitch and the connecting device.

Workaround:

Disable strong-crypto on the FortiSwitch by executing the following commands:

config system global

set strong-crypto {enable | disable}

Note: Disabling strong-crypto requires a reboot of the FortiSwitch.

Permanent Solution:

Ensure the connecting device supports all algorithms used by the FortiSwitch. For details on the SSH algorithms supported by FortiSwitch, refer to the FortiSwitch Administration Guide at the following link:
SSL | FortiSwitch 7.4.4 | Fortinet Document Library

This should resolve the issue and allow successful SSH connections.

417

Contributors

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Troubleshooting Tip: Resolving 'Connection Error: System.Exception: Could not negotiate mac algorithm' on FortiSwitch

You are leaving our website