04-27-2007 10:41 AM - edited 03-11-2019 03:05 AM
I would like to be able to use an SSH client to connect to my PIX firewall over the Internet. I can do this to my 506 PIX but not on my 515, with debug SSH on I keep seeing "invalid userid michael" even though I have put the command "user michael password michael privilege 15" into the configuration. What am I doing wrong?
Solved! Go to Solution.
04-27-2007 12:02 PM
Have you created a rsa key ?
#Generate a key:
ca generate rsa key 1024
show ca mypubkey rsa
#Save ssh key:
ca save all
#Allow incomming ssh connections:
ssh ip_address [netmask] [interface_name]
aaa authentication ssh console LOCAL
sincerely
Patrick
04-27-2007 12:02 PM
Have you created a rsa key ?
#Generate a key:
ca generate rsa key 1024
show ca mypubkey rsa
#Save ssh key:
ca save all
#Allow incomming ssh connections:
ssh ip_address [netmask] [interface_name]
aaa authentication ssh console LOCAL
sincerely
Patrick
04-27-2007 12:04 PM
Michael,
Have a look at this document and make sure that you have all the configuration required to allow SSH access from the outside host.
If you are still having problems post the sanitized configuration and debug ssh output.
HTH
Sundar
04-28-2007 10:25 AM
YOU ARE MISSING:
aaa authentication ssh console LOCAL
Otherwise, use pix as username and your telnet password to access your unit!
Please rate this post if it was helpful!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide