Tuesday, March 10, 2020

Cisco modulus size

I was changing my DH key size on my switches and I saw this line Modulus Size: 1024 bits, from the output sh ip ssh and my question is why I am seeing this and how can I change it? My crypto key is 4096 and as you see my dh is also 4096, but I am not sure why I am seeing the modulus size 1024. Any ideas?

SSH Enabled - version 2.0 Authentication methods:publickey,keyboard-interactive,password Authentication Publickey Algorithms:x509v3-ssh-rsa,ssh-rsa Hostkey Algorithms:x509v3-ssh-rsa,ssh-rsa Encryption Algorithms:aes128-ctr,aes192-ctr,aes256-ctr MAC Algorithms:hmac-sha1,hmac-sha1-96 KEX Algorithms:diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1 Authentication timeout: 120 secs; Authentication retries: 3 Minimum expected Diffie Hellman key size : 4096 bits IOS Keys in SECSH format(ssh-rsa, base64 encoded): TP-self-signed-3909557376 Modulus Size : 1024 bits ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQCp 



No comments:

Post a Comment