User Manual

29Rack ATS AP44xx User Manual

cipher

Access: Super User, Administrator

Description: Enable or disable cryptographic algorithms for Web UI sessions. You cannot enable or

disable these algorithms directly from the Web interface. You must reboot your NMC after enabling or

disabling algorithms for changes to take effect.

There are three categories of algorithms: Authentication Algorithms, Block Cipher Algorithms, and MAC

Algorithms. Available and Blocked Cipher Suites are also listed.

NOTE: Disabling the only algorithm in a category will block all SSL/TLS sessions and HTTPS access

may not work depending on your browser and its configuration.

NOTE: In v6.7.2 and higher, you must explicitly enable or disable an algorithm.

Example: Disable triple-DES.

cipher -3des disable

E000: Success

Reboot required for change to take effect.

Error Message: E000, E102

Option Argument Description

-3des enable | disable

Enable or disable Triple DES.

-aes enable | disable Enable or disable Advanced Encryption Standard (AES).

-dh enable | disable Enable or disable Diffie-Hellman (DH).

-rsake enable | disable Enable or disable RSA key exchange.

-rsaau enable | disable Enable or disable RSA authentication.

-sha1 enable | disable Enable or disable Secure Hash Algorithm 1 (SHA-1).

-sha2 enable | disable Enable or disable Secure Hash Algorithm 2(SHA-2).

-ecdhe enable | disable Enable or disable Elliptic Curve Diffie-Hellman Exchange

(ECDHE).