Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Generating SSH key for hardware replacement

Hi - does anyone have any good practices for hardware replacement where SSH is used? For example a remote engineer replaces a switch, a config file is pushed on from our NMS after some basic configuration & then all seems well - except we need to generate the SSH key with 'crypto key generate' and we can not ssh to the box to do this. We don't really want the onsite engineer to generate the key - can we do this in the config file somehow? Ideally keeping the key the same as before so we don't have a problem with NMS's saying the SSH key has changed.

Also - if the key is generated, is it stored in nvram automatically, or only if you wr mem?

Cisco Employee

Re: Generating SSH key for hardware replacement

hi rich,

after generating the keys,put in the command:

ca save all

this saves the key to the flash memory and you do n't have to regenerate the keys in case the device reboots.

as far as replacement device is concerned,unfortunately there's no way around and you need to regenerate the keys.



cisco tac.