I have several MD1000e's in a secure environments and my vulnerability scanner found that all the M1000es and iDRACs have weak MAC algorithms, essentially I need at least 128-bit, preferably 256. I was able to disable this on the iDRACs but cannot find a way to disable this on the M1000e CMC via the GUI.

The CMCs are running version 5.11.

Is this something that can be modified using racadm?

Below are a list of the vulnerable MAC algorithms that were discovered:

hmac-md5, hmac-md5-96, hmac-sha1-96, hmac-sha256-96, hmac-sha2-512-96