Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sgursimran
Staff
Staff

Created on ‎10-19-2023 10:10 PM

Article Id 279977

Technical Tip: How SSH Server host key algorithms can be changed

Description

This article describes how SSH server host key algorithms can be changed on FortiGate
Scope

FortiGate v7.4.
Solution

Starting v7.4.0 FortiGate has the capability to change the SSH server host key algorithms offered by FortiGate as SSH Server.

 

By default, FortiGate uses all the algorithm keys:

 

default keys.png

 

The same can be verified in the Wireshark capture as below:

 

default pcap.png

 

SSH server host key algorithms can be modified on FortiGate.

 

config.png

 

Multiple ssh-host key-algo server keys can be set on FortiGate.

 

set mutiple key.png

 

It is also possible to verify in the PCAP.

 

set mutiple key pcap.png

 

2300
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.