Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

%SSH-3-PRIVATEKEY: Unable to retrieve RSA private key

HI All,

I am having some issues on Cisco 3745 router.

i have generated crypto keys many times but issue is still persisting, i would appreciate if i can find some instant solution for SSH-3-PRIVATEKEY issue.

 

flash:c3745-advipservicesk9-mz.123-22.bin"

---

Oct  3 11:08:50.296: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 15:14:50.201: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 16:52:59.822: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 16:53:01.342: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 16:53:02.866: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 20:31:30.395: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 22:06:05.617: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0

 

 

 

Thanks,

Neeraj

5 REPLIES

You need to zeroize all of

You need to zeroize all of the keys you've created by entering

crypto key zeroize rsa label yourkeyname

Reload, then recreate your key.  Should work once you complete these steps.

 

If this post is helpful, please rate.  Thanks.

New Member

i have tried to re-generate

i have tried to re-generate the key but havn't tried to reload the router because it's in production.

neeraj.k.rawat,Was your issue

neeraj.k.rawat,

Was your issue ever resolved?

Bronze

The router doesn't need to be

The router doesn't need to be reloaded, but it seems to not find the private key even though it's there unless you specify it directly by Key Name.

sh cry key mypubkey rsa 
% Key pair was generated at: 16:16:06 MST Oct 4 2016
Key name: router.domain.local
 Usage: General Purpose Key
 Key is not exportable.
 Key Data:
  30820122 300D0609 2A864886 F70D01...

ip ssh rsa keypair-name router.domain.local
write mem

Is your router automatically

Is your router automatically selecting an SSH key or is it configured to use a specific one? If it's configured to use a specific one (using the "ip ssh rsa keypair-name" configuration command) then you're going to get this error if that specific key isn't present.

198
Views
0
Helpful
5
Replies