Search

GlobalSCAPE Knowledge Base


Outbound SFTP connections to Tumbleweed SecureTransport (TST) server fail and SSH HMAC check fails

8 Years Ago
Karla Marsh
EFT Express (SMB) & Enterprise

THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT Server, all versions

SYMPTOM

Outbound SFTP connections to Tumbleweed SecureTransport (TST) server fail and SSH HMAC check fails

RESOLUTION

This is a known issue in SecureTransport v4.9.1 SP1, with the MACs hmac-MD5-96 and hmac-sha1-96. The resolution is to disable hmac-MD5-96 and hmac-sha1-96 in the registry for EFT Server outbound SFTP connections.

To disable the MACs in the registry

Edit the following registry settings:

HKLM\SOFTWARE\GlobalSCAPE\TED 6\Settings\SecuritySFTP2\

Set the following DWORD values to ‘0’ (Zero):

SFTP2_MD5-96

SFTP2_SHA1-96

MORE INFORMATION

Other Tumbleweed SecureTransport-related articles:

SecureTransport and EFT Server SSL: https://kb.globalscape.com/KnowledgebaseArticle10181.aspx

Share Article

On a scale of 1-5, please rate the helpfulness of this article



Not Helpful
Very Helpful
Optionally provide additional feedback to help us improve this article...

Thank you for your feedback!


Comments require login or registration.

Details
Last Modified: 8 Years Ago
Last Modified By: GlobalSCAPE 5
Type: ERRMSG
Rated 1 star based on 8 votes.
Article has been viewed 29K times.
Options
Print Article
Export As PDF
Also In This Category
Tags
hmac-MD5-96
hmac-sha1-96
MAC
registry
SecureTransport
SecuritySFTP2
SFTP
SFTP2_MD5-96
SFTP2_SHA1-06
SHA-1-96

Copyright ©1996-2020 GlobalSCAPE, Inc. All rights reserved. Privacy Policy