Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search instead for
Did you mean:
User receives the Error: socket connect failed IDS SSH error message when adding the ssh host-key
The Cisco Intrusion Detection System (IDS) SSH (Secure Shell) error message can be caused by a misconfiguration of the Public Modulus field. The RSA algorithm uses the Public Modulus to encrypt data.
What is SSH?
The Secure Shell (SSH) Protocol enables the user to login securely from remote locations over an insecure network
The SSH2 protocol provides improvements to SSH1. Few of them are mentioned below:
A more secure protocol.
With root privileges less code run is required in new design.
New methods for cryptography and mathematics resulting incredible improvement in Speed
Support for multiple public key algorithms, including DSA and Diffie-Hellman key exchange.
To resolve this issue, verify that the SSH hosts are correctly added to the IDS configuration.
Perform these steps:
In the IDS Device Manager Sensor, select Device > Sensor Setup > Known Host Keys.
The SSH Host Keys page appears.
To add known host keys, click Add.
To identify the key, enter a unique ID in the ID field.
Note: The ID should be a 1 to 256 character string that uniquely identifies the authorized key.
Numbers, "_", and "-" are valid. Spaces are not valid.
In the Key Modulus Length field, enter an ASCII decimal integer from 511 to 2048.
The Key Modulus Length is the number of significant bits in the modulus. The strength of an Rivest, Shamir, and Adelman (RSA) key relies on the size of the modulus. The more bits the modulus has, the stronger the key.
In the Public Exponent field, enter an ASCII decimal integer from 3 to 4294967296.
The RSA algorithm uses the Public Exponent to encrypt data.
In the Public Modulus field, enter an ASCII decimal integer in the range x, such that (2^ [key-modulus-length-1]) < x < (2^key-modulus-length).
The RSA algorithm uses the Public Modulus to encrypt data.