I need to do some modification on my Fortigate firewall 200D and for this I need some help. I am using SSH V1 and now i need to change it to SSH V2 and i also need to upgrade SSL V1 to higher one and increase encryption ciphers with a key length of at least 128 bits.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
1. to change it to SSH V2. -->Please configure the following , Supported SSH protocol versions, ciphers, and bit strengths include SSH version 2 with AES-128, 3DES, Blowfish, and SHA-1 config system global set admin-ssh-v1 disable <--- end
2. to upgrade SSL V1 to higher one and encryption ciphers with a key length of at least 128 bits
config system global set strong-crypto enable <-------- end
Regards Anil
Also don't forget sslvpn settings
config vpn ssl setting
set algorithm high
set sslv3 disable
set sslv2 disable
end
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1705 | |
1093 | |
752 | |
446 | |
230 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.