SSH _MUST_ be configured to limit the ciphers to algorithms that are FIPS 140 validated. FIPS 140-2 is the current standard for validating that mechanisms used to access cryptographic modules utilize authentication that meet federal requirements. Operating systems utilizing encryption _MUST_ use FIPS validated mechanisms for authenticating to cryptographic modules. NOTE: /etc/ssh/sshd_config will be automatically modified to its original state following any update or major upgrade to the operating system. Fix: Add the following lines in /etc/ssh/sshd_config file: Ciphers aes256-ctr,aes192-ctr,aes128-ctr And run the following command: /bin/launchctl kickstart -k system/com.openssh.sshd

[aes256-ctr,aes192-ctr,aes128-ctr]

Add the following lines in /etc/ssh/sshd_config file: Ciphers aes256-ctr,aes192-ctr,aes128-ctr And run the following command: /bin/launchctl kickstart -k system/com.openssh.sshd