Specify ciphers allowed for protocol version 2

Use this group policy to specify the ciphers allowed for SSH protocol version 2. If you enable this policy, you can add or delete ciphers to increase the speed of SSO.

Multiple ciphers must be separated by commas. If you want to add a cipher to the list, use the ‘+’ character at the beginning of the name. If you enter the name only, you will replace the existing ciphers with the new cipher.

The order of the cipher list will determine the order that sshd uses the ciphers. For example, if you want to increase the speed of SSO, you can place the cipher, aes128-ctr, at the beginning of the list.

When this policy is disabled, the default cipher list, which is the most secure grouping, is used, but may cause delays in SSO.

To enable this group policy, you must be running Centrify OpenSSH 5.3.0 or later.

This group policy modifies the Ciphers setting in the following file: /etc/centrifydc/ssh/sshd_config