cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
7092
Views
0
Helpful
10
Replies

HTTPS error

A.Timoshenko
Level 1
Level 1

Hi, when i try loggin by HTTPS on a router i have next errors.

%HTTPS: http ssl get context fail (-41104)

HTTP: ssl get context failed (-40407)

I have a 2821 router with

c2800nm-advipservicesk9-mz.124-15.T1.bin ios

Can anybody help me?

10 Replies 10

garytayl
Level 3
Level 3

Try the following:

Router(config)#crypto key zeroize rsa

Router(config)#crypto key generate rsa

How many bits in the modulus [512]: 1024

% Generating 1024 bit RSA keys ...[OK]

it isn't help

If you have ip http secure-client-auth in your config, try removing it and then https again.

it doesn't work too

johnlloyd_13
Level 9
Level 9

try to add these on your router:

Router(config)#username privilege 15 password <0 or 7>

Router(config)#ip http authentication local

Router(config)#line vty 0 4

Router(config-line)#login local

Router(config-line)#transport input ssh

privilege 15 allows you to configure your router. also, check if you IOS supports crypto functionality

johnlloyd_13
Level 9
Level 9

i forgot to add this:

Router(config)#ip http secure-server

this command enables https access on the router

ssh 1.5 work correct.

of course i know about "ip http secure-server" command.

i know this is very old topic but any lick to solve it ?

hi,

the solution is easy and gave it above:

Router(config)#crypto key zeroize rsa

Router(config)#crypto key generate rsa

How many bits in the modulus [512]: 1024

% Generating 1024 bit RSA keys ...[OK]

you have to generate key but 1024 not 512 this one is to SSH1.5.... i checked it a few minutes ago

matthias.motte
Level 1
Level 1

Hi,

I have this problem too.

To fix it I do the folowing :

(conf)#crypto key zeroize rsa

(conf)#ip http secure-server

Try again my connexion to ssl server and ... it's work like a charm ;)

After I create a new rsa key (1024)

(conf)#crypto key generate rsa modul 1024

Try ssh and https, work together now ;)

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco