Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Umesh
Contributor

SSH Server Supports Weak Key Exchange Algorithms

Hi Team,

 

1. How can we check SSH Server Supports Weak Key Exchange Algorithms is enabled in the Fortigate Firewall

 and what are the command in order to check it.

 

2. how to disable it If SSH Server Supports Weak Key Exchange Algorithms.

 

 

Thank you.

Umesh

2 REPLIES 2
kcheng
Staff
Staff

Hi @Umesh 

 

In order to check the respective, please refer to the following document:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-SSH-Server-Supports-Weak-Key-Exchange-Algo...

 

You should consider hardening your FortiGate to ensure stronger and secure encryption:

https://docs.fortinet.com/document/fortigate/6.0.0/hardening-your-fortigate/344487/global-commands-f...

Cheers,
Kayzie Cheng

If you have found a solution, please like and accept it to make it easily accessible for others.
Umesh

Hi,

 

Config sys globle

set ssh-kex-algo diffie-hellman-group-exchange-sha256

Is above command is strong for SSH Server Supports Weak Key Exchange Algorithms

Labels
Top Kudoed Authors