Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SSH Fingerprint Verification

When an SSH client connects to a server for the first time, it displays the fingerprint of the system's SSH public key. You, the user, are supposed to verify the fingerprint before you accept the connection (to protect against a spoofing attack on first connection). Once you accept the ssh client remembers the key & will allow connections to that server in the future & won't bother for a confirmation in the future unless the key changes.

Does anyone know how to either: A) Display the SSH key fingerprint on the router itself or B) Know of a Windows based tool that can take the public key that the router will display and compute the fingerprint? Thanks in advance.

2 REPLIES
Bronze

Re: SSH Fingerprint Verification

I think we don't have a way to see the "fingerprint" on either PIX or IOS. The only thing we can do is to check the RSA keys by typing these commands: show crypto key mypubkey rsa (in Routers) and show ca mypubkey rsa (in PIX).

New Member

Re: SSH Fingerprint Verification

ok - but do you know of any utilty, that I can paste the key into, that will spit out the fingerprint that should expect to see? Thanks.

433
Views
0
Helpful
2
Replies