Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SSH on red. Sup720

is there a way to synchronize the ssh key between the active and standby supervisor engine.

After a failover it is not possible to connect via ssh.

Andre

2 REPLIES

Re: SSH on red. Sup720

Hi,

If I am not mistaken, the ssh key which is generated using the "crypto key generate rsa" command cannot be saved into router's common config file (startup-config) and be replicated into the standby SupEngine. You have to generate individual key in both modules.

What you can do is to bring-up the standby SupEngine, and configure the necessary/required ssh parameters like the hostname, & domain before generating the ssh key. I am sure the startup-config will be similar, except for the ssh.

If both hostname and domain name is simialr, then you only need to generate the ssh key.

http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124tcr/tsec_r/sec_c3ht.htm#wp1262148

Rgds,

AK

New Member

Re: SSH on red. Sup720

In this case we are running into a bug in 12.2.33 SRA. Normally the RSA keys should be sync'd to the standby sup.

andre

117
Views
0
Helpful
2
Replies