https://community.cisco.com/t5/network-security/asa-ssh-access-ca-certificate/m-p/701565#M422823 <HTML><HEAD></HEAD><BODY><P>try to delete RSA key</P><P>crypto key zeroize rsa</P><P>and generate key again</P><P>crypto key generate rsa modulus modulus_size</P><P>M.</P><P></P></BODY></HTML> Fri, 03 Nov 2006 08:51:50 GMT m.sir 2006-11-03T08:51:50Z https://community.cisco.com/t5/network-security/asa-ssh-access-ca-certificate/m-p/701564#M422822 <P>I previously had SSH working and after changing RSA keys, importing CA certificates and such, SSH no longer works. I know that if you don't have the RSA key you have to generate it, however, if you change them, what do you do? SSH debugging shows that there is no RSA Private Key. I get "ssh_exchange_identification: Connection closed by remote host" when I try to SSH. Also, When I go through all the steps to install a CA certificate, it seems to be working, but when I am actually presented the certificate when I access the ASA it says the certificate is either invalid or corrupt (using firefox, SSL error code 8101). The certificate is valid, and everything seems to be alright. I've reverted to the self-signed in the meantime. Any ideas? Did I generate the wrong type of cert?</P><P></P><P>Thanks </P> Fri, 21 Feb 2020 09:17:02 GMT https://community.cisco.com/t5/network-security/asa-ssh-access-ca-certificate/m-p/701564#M422822 rochbelisle 2020-02-21T09:17:02Z https://community.cisco.com/t5/network-security/asa-ssh-access-ca-certificate/m-p/701565#M422823 <HTML><HEAD></HEAD><BODY><P>try to delete RSA key</P><P>crypto key zeroize rsa</P><P>and generate key again</P><P>crypto key generate rsa modulus modulus_size</P><P>M.</P><P></P></BODY></HTML> Fri, 03 Nov 2006 08:51:50 GMT https://community.cisco.com/t5/network-security/asa-ssh-access-ca-certificate/m-p/701565#M422823 m.sir 2006-11-03T08:51:50Z