09-21-2008 01:55 AM - edited 03-10-2019 04:18 AM
I am trying to connect to a 4255 sensor with IDM,but am unable to do so. I get the following error "Error connecting to sensor.Failed to load sensor.- Error getting config data from the following modules:sshKnownHosts
Exiting IDM"
Anyone know why and how I can fix it?
09-22-2008 07:40 AM
you must have has specified some ssh known hosts in ips.
ips logs into these devices via ssh and puts a shun.
#####
as idm is not able to retrieve this info.,I would look intp the service sshknownhosts from cli :
IPS-4240-Security# sh config
! ------------------------------
! Current configuration last modified Tue Sep 16 16:35:23 2008
! ------------------------------
! Version 6.1(1)
! Host:
! Realm Keys key1.0
! Signature Definition:
! Signature Update S329.0 2008-04-16
! Virus Update V1.2 2005-11-24
! ------------------------------
service interface
physical-interfaces GigabitEthernet0/0
admin-state enabled
subinterface-type none
exit
exit
! ------------------------------
service authentication
exit
! ------------------------------
service event-action-rules rules0
overrides deny-packet-inline
override-item-status Enabled
risk-rating-range 70-100
exit
exit
! ------------------------------
service host
network-settings
host-ip 192.168.16.17/25,192.168.16.1
host-name IPS-4240-Security
telnet-option enabled
access-list 0.0.0.0/0
exit
time-zone-settings
offset 330
standard-time-zone-name GMT+05:30
exit
auto-upgrade
cisco-server disabled
exit
exit
! ------------------------------
service logger
exit
! ------------------------------
service network-access
exit
! ------------------------------
service notification
exit
! ------------------------------
service signature-definition sig0
exit
! ------------------------------
service ssh-known-hosts
exit
! ------------------------------
service trusted-certificates
exit
! ------------------------------
service web-server
exit
! ------------------------------
service anomaly-detection ad0
exit
! ------------------------------
service external-product-interface
exit
! ------------------------------
service health-monitor
exit
IPS-4240-Security# conf t
IPS-4240-Security(config)# service ssh-known-hosts
IPS-4240-Security(config-ssh)# ?
default Set the value back to the system default setting.
exit Exit service configuration mode.
no Remove an entry or selection setting.
rsa1-keys SSHPv1.5 RSA public keys of known hosts
show Display system settings and/or history information.
IPS-4240-Security(config-ssh)# ?
default Set the value back to the system default setting.
exit Exit service configuration mode.
no Remove an entry or selection setting.
rsa1-keys SSHPv1.5 RSA public keys of known hosts
show Display system settings and/or history information.
IPS-4240-Security(config-ssh)# default ?
rsa1-keys Reset rsa1-keyscontents back to default.
IPS-4240-Security(config-ssh)# rsa1-keys ?
IPS-4240-Security(config-ssh)# default
% Incomplete command
IPS-4240-Security(config-ssh)# default ?
rsa1-keys Reset rsa1-keyscontents back to default.
IPS-4240-Security(config-ssh)# default rsa1-keys ?
IPS-4240-Security(config-ssh)#
###########
set the system default for the host ip addresses ,for which you have added the ssh keys.
Regards,
Sushil
09-23-2008 12:28 AM
Hi Sushil,
Thank you for your reply, but it is not clear what I have to do.
There is nothing in "service ssh-known-hosts"
! ------------------------------
service ssh-known-hosts
exit
! ------------------------------
Can you explain step by step, what is to be done as I am a newbie
09-23-2008 02:09 AM
Sushil,
I did an "IPS Recovery", and now I can can connect.
Thank you for your help. Off course I still don't understand why the error though.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide