Need to edge out the competition for your dream job? Train for certifications today.
c1kv-1(config)#ip http secure-ciphersuite ?
3des-ede-cbc-sha Encryption type ssl_rsa_with_3des_ede_cbc_sha ciphersuite
des-cbc-sha Encryption type ssl_rsa_with_des_cbc_sha ciphersuite
rc4-128-md5 Encryption type ssl_rsa_with_rc4_128_md5 ciphersuite
rc4-128-sha Encryption type ssl_rsa_with_rc4_128_sha ciphersuite
c1kv-1(config)#ip http secure-ciphersuite 3des-ede-cbc-sha
c1kv-1#show ip http server secure status
HTTP secure server status: Enabled
HTTP secure server port: 443
HTTP secure server ciphersuite: 3des-ede-cbc-sha
HTTP secure server client authentication: Disabled
HTTP secure server trustpoint:
HTTP secure server active session modules: ALL
Use 3072-bit certificates with cipher suites that include TLS_RSA_.
Use 3072-bit DH or 256-bit or 384-bit ECDH and ECDSA with cipher suites that include:
TLS_ECDH_ECDSA or TLS_RSA_ECDSA
Configure the negotiated TLS cipher suites to include AES-128 or AES-256 GCM as the encryption algorithms and SHA-256 or SHA-384 for the hashes. The negotiated cipher suites should include:
WITH_AES_128_GCM_SHA256 or WITH_AES_256_GCM_SHA384
WITH_AES_256_GCM_SHA256 or WITH_AES_256_GCM_SHA384
ip http secure-ciphersuite
Open in new window
Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Please enter a first name
Please enter a last name
Must be at least 4 characters long.
Join and Comment
From novice to tech pro — start learning today.
Premium members can enroll in this course at no extra cost.