|
SSH Server Host Key Algorithm Restriction in FIPS-CC Mode
|
Starting in PAN-OS 12.1.8, firewalls running in FIPS-CC mode
exclusively advertise rsa-sha2-512 for RSA host
key authentication on the management SSH server. The previously
supported ssh-rsa and
rsa-sha2-256 algorithms are no longer permitted
in FIPS-CC mode. This change is not applicable to normal
(non-FIPS-CC) operation mode.
This restriction is required to comply with the collaborative
Protection Profile for Network Devices Version 4.0
(NDcPPv4.0e).
SSH clients that do not support rsa-sha2-512
(OpenSSH older than 7.2 or SecureCRT older than 9.0) will fail to
connect to a firewall running PAN-OS 12.1.8 or later in FIPS-CC
mode using default RSA host keys.
Workaround: Configure the default SSH host key for management
SSH to an ECDSA key type and commit. ECDSA-based host key
authentication is not restricted by this change.
|