[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More
Experts Exchange Solution brought to you by
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
ip http secure-ciphersuite
Open in new window
c1kv-1(config)#ip http secure-ciphersuite ?
3des-ede-cbc-sha Encryption type ssl_rsa_with_3des_ede_cbc_sha ciphersuite
des-cbc-sha Encryption type ssl_rsa_with_des_cbc_sha ciphersuite
rc4-128-md5 Encryption type ssl_rsa_with_rc4_128_md5 ciphersuite
rc4-128-sha Encryption type ssl_rsa_with_rc4_128_sha ciphersuite
c1kv-1(config)#ip http secure-ciphersuite 3des-ede-cbc-sha
c1kv-1#show ip http server secure status
HTTP secure server status: Enabled
HTTP secure server port: 443
HTTP secure server ciphersuite: 3des-ede-cbc-sha
HTTP secure server client authentication: Disabled
HTTP secure server trustpoint:
HTTP secure server active session modules: ALL
Use 3072-bit certificates with cipher suites that include TLS_RSA_.
Use 3072-bit DH or 256-bit or 384-bit ECDH and ECDSA with cipher suites that include:
TLS_ECDH_ECDSA or TLS_RSA_ECDSA
Configure the negotiated TLS cipher suites to include AES-128 or AES-256 GCM as the encryption algorithms and SHA-256 or SHA-384 for the hashes. The negotiated cipher suites should include:
WITH_AES_128_GCM_SHA256 or WITH_AES_256_GCM_SHA384
WITH_AES_256_GCM_SHA256 or WITH_AES_256_GCM_SHA384
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Create a reliable backup. Make sure you always have dependable copies of your data so you can restore your entire system or individual files.
From novice to tech pro — start learning today.
Premium members can enroll in this course at no extra cost.