Troubleshooting Tip: Resolving 'Connection Error: System.Exception: Could not negotiate mac algorithm' on FortiSwitch

dwivedis · ‎12-22-2024

Description

This article provides guidance on troubleshooting the error 'Connection Error: System.Exception: Could not negotiate mac algorithm', which is encountered when attempting to establish an SSH session with a FortiSwitch.

Scope

FortiSwitch.

Solution

When trying to SSH into a FortiSwitch using SolarWinds, the following error message may appear:

HMacList: hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-sha1-96,hmac-sha2-256-etm,hmac-sha2-512-etm

[3374ebda] [08/13/2024 14:44:10.416] Connection Error: System.Exception: Could not negotiate mac algorithm

This issue typically arises due to a mismatch in supported SSH algorithms between the FortiSwitch and the connecting device.

Workaround:

Disable strong-crypto on the FortiSwitch by executing the following commands:

config system global

set strong-crypto {enable | disable}

Note: Disabling strong-crypto requires a reboot of the FortiSwitch.

Permanent Solution:

Ensure the connecting device supports all algorithms used by the FortiSwitch. For details on the SSH algorithms supported by FortiSwitch, refer to the FortiSwitch Administration Guide at the following link:
SSL | FortiSwitch 7.4.4 | Fortinet Document Library

This should resolve the issue and allow successful SSH connections.

Troubleshooting Tip: Resolving 'Connection Error: System.Exception: Could not negotiate mac algorithm' on FortiSwitch

You are leaving our website