Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
202
Views
0
Helpful
1
Replies

Can not select key message

admin_2
Level 3
Level 3

‎08-14-2003 04:38 PM - edited ‎03-09-2019 04:26 AM

Hi, my name is Juan Carlos Torres and work for a Cisco distributor.

We recieved a PIX515 that have presented the next error:

assertion "1port||fport" failed:file"xlate.c", line 1075 thread name: pix/intf1(old pc 0x80078e6b ebp

0x80CI35F8)

I investigated the error but couldn't find any related information, so I powered on the equipment and it worked fine for a long while, so I decided to upgrade software version.

I upgraded to version 6.3(2) from 6.0 and now after boot up I recive the message "Can not select private key" before the "Type ? for a list of available commands" message. I tried to downgrade version to 6.1 but now I can't !!! I recieve the message Timed out during transfer.

Is there anybody that can help me ???, does anybody knows what the "Can not select private key" message means ??? Tnks !!!

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎08-15-2003 06:20 PM

The message usually indicates the PIX has a private/public key pair generated internally, but since it was generated the config has been changed (usually a different IP address on an interface), making the key pair invalid.

To get rid of the message just zeroize your key and generate a new pair with:

> conf t

> ca zeroize rsa

> ca generate rsa key 512

After this you shouldn't see the message anymore.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents