Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ASA SSH access / CA certificate

I previously had SSH working and after changing RSA keys, importing CA certificates and such, SSH no longer works. I know that if you don't have the RSA key you have to generate it, however, if you change them, what do you do? SSH debugging shows that there is no RSA Private Key. I get "ssh_exchange_identification: Connection closed by remote host" when I try to SSH. Also, When I go through all the steps to install a CA certificate, it seems to be working, but when I am actually presented the certificate when I access the ASA it says the certificate is either invalid or corrupt (using firefox, SSL error code 8101). The certificate is valid, and everything seems to be alright. I've reverted to the self-signed in the meantime. Any ideas? Did I generate the wrong type of cert?

Thanks

1 REPLY
Gold

Re: ASA SSH access / CA certificate

try to delete RSA key

crypto key zeroize rsa

and generate key again

crypto key generate rsa modulus modulus_size

M.

634
Views
0
Helpful
1
Replies
CreatePlease to create content