ssh client mac

Supports MAC configurations for the SSH client.

Syntax

ssh client mac string
no ssh client mac

Command Default

SSH server is enabled by default.

Parameters

string
The string name of the default MAC required. Your choices are hmac-sha2-256-etm@openssh.com, hmac-sha2-512-etm@openssh.com, hmac-sha2-256, hmac-sha2-512, hmac-sha1,hmac-sha1-96, hmac-md5, hmac-md5-96, hmac-ripemd160, hmac-ripemd160@openssh.com, umac-64@openssh.com, umac-128@openssh.com, hmac-sha1-etm@openssh.com, hmac-sha1-96-etm@openssh.com, hmac-md5-etm@openssh.com, hmac-ripemd160-etm@openssh.com, umac-64-etm@openssh.com, umac-128-etm@openssh.com, and hmac-ripemd160-etm@openssh.com. The default MACs supported in FIPS mode are hmac-sha1, hmac-sha2-256, and hmac-sha2-512.

Modes

Global configuration mode

Usage Guidelines

The MAC hmac-md5 is not supported in FIPS mode.

Examples

Typical command example: 

device# configure terminal
device(config)# ssh client mac hmac-sha1,hmac-sha2-256,hmac-sha2-512 
device(config)# do show running-config ssh client 
ssh client mac hmac-sha1,hmac-sha2-256,hmac-sha2-512 
! 
device(config)# do show ssh client status 
SSH Client Mac: hmac-sha1,hmac-sha2-256,hmac-sha2-512
9036689-01 Rev AA