When working with TPP to communicate with other systems using SSH you may run into the error "Failed to negotiate a transport component". Below is an example of this error:
The protocols that TPP supports are as follows from 17.1:
Ciphers
| AES128CBC |
| AES128CTR |
| AES192CBC |
| AES192CTR |
| AES256CBC |
| AES256CTR |
| TripleDESCBC |
| TripleDESCTR |
HMACS
| hmac-ripemd160 |
| hmac-sha1 |
| hmac-sha2-256 |
| hmac-sha2-384 |
| hmac-sha2-512 |
Key Algorithms
| ssh-rsa |
| ecdsa-sha2-nistp256 |
| ecdsa-sha2-nistp384 |
| ecdsa-sha2-nistp521 |
Note: we no longer support ssh-dss
Key Exchange Algorithms
| diffie-hellman-group1-sha1 |
| diffie-hellman-group14-sha1 |
| diffie-hellman-group14-sha256 |
| diffie-hellman-group16-sha512 |
| diffie-hellman-group18-sha512 |
Some of these items are not available when running in FIPS mode (eg. Ripemd160)
Comments