This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL Certificate Signed Using Weak Hashing Algorithm vulnerability is found on NAM Access Gateway 4.5.2.0

Hi,

I am looking for the resolution to remove the vulnerability "SSL Certificate Signed Using Weak Hashing Algorithm" on NAM Access Gateway appliance 4.5.2.0. 

Nessus VA tool scan the appliance and report the following details

The following certificates were part of the certificate chain sent by but contain hashes that are considered to be weak

Sublect: O=novell/OU-accessManager/CN-jcc-10_253_105_94-624008395
Signature Algorithm: MD5With RSA encryption

 

Thanks,

Parents
  • Verified Answer

    +1  

    We would recommend upgrading to a newer version of Access Manager that does not use MD5.  The Access Manager 5.0 Security Guide notes the concerns with MD5 and SHA1 and highlights default support of cipher suites with SHA 256 or higher.

Reply
  • Verified Answer

    +1  

    We would recommend upgrading to a newer version of Access Manager that does not use MD5.  The Access Manager 5.0 Security Guide notes the concerns with MD5 and SHA1 and highlights default support of cipher suites with SHA 256 or higher.

Children