https://community.cisco.com/t5/network-security/pix-515e/m-p/1233575#M502952 <HTML><HEAD></HEAD><BODY><P>if it only has a failover license but it not actually a memeber of a failover pair, it probably won't be able to save these locally.</P></BODY></HTML> Tue, 09 Jun 2009 13:15:00 GMT srue 2009-06-09T13:15:00Z https://community.cisco.com/t5/network-security/pix-515e/m-p/1233572#M502949 <P>Hi there,</P><P></P><P>I have at my lab a Cisco PIX 515e (failover) and it boot every 24 hours. The strange thing is every time it boots (automatic or forced one) it misses the remote access via ssh, and I have to go to the console and re-enter the "cry key gen rsa" command. Does anyone have any idea? Thanks in Advance.</P><P></P><P>Jonas</P> Fri, 21 Feb 2020 11:30:07 GMT https://community.cisco.com/t5/network-security/pix-515e/m-p/1233572#M502949 j.conceicao 2020-02-21T11:30:07Z https://community.cisco.com/t5/network-security/pix-515e/m-p/1233573#M502950 <HTML><HEAD></HEAD><BODY><P>Jonas</P><P></P><P>After you generate the key are you then using this command - </P><P></P><P>pix# ca save all</P><P></P><P>this command writes the keys to persistent memory on the pix so it should be available after a reload.</P><P></P><P>Jon</P></BODY></HTML> Mon, 08 Jun 2009 20:12:25 GMT https://community.cisco.com/t5/network-security/pix-515e/m-p/1233573#M502950 Jon Marshall 2009-06-08T20:12:25Z https://community.cisco.com/t5/network-security/pix-515e/m-p/1233574#M502951 <HTML><HEAD></HEAD><BODY><P>Hi Jon,</P><P></P><P>Thanks for your help.</P><P></P><P>This command does exist anymore. I just use the write command, but it doesn't save the generated key at all. Anything else that I could do? Thanks again.</P><P></P><P>----</P><P>MaxiFire(config)# ca save all</P><P>WARNING: the 'ca' command syntax has been deprecated</P><P>CA root certificates, device certificates, and RSA key pairs are now saved by issuing a 'write mem'</P><P>----</P><P></P><P>Jonas</P><P></P></BODY></HTML> Tue, 09 Jun 2009 12:01:23 GMT https://community.cisco.com/t5/network-security/pix-515e/m-p/1233574#M502951 j.conceicao 2009-06-09T12:01:23Z https://community.cisco.com/t5/network-security/pix-515e/m-p/1233575#M502952 <HTML><HEAD></HEAD><BODY><P>if it only has a failover license but it not actually a memeber of a failover pair, it probably won't be able to save these locally.</P></BODY></HTML> Tue, 09 Jun 2009 13:15:00 GMT https://community.cisco.com/t5/network-security/pix-515e/m-p/1233575#M502952 srue 2009-06-09T13:15:00Z https://community.cisco.com/t5/network-security/pix-515e/m-p/1233576#M502953 <HTML><HEAD></HEAD><BODY><P>Hi Srue,</P><P></P><P>Hmmm, why only the ca key? All the configuration remains... </P><P></P><P>Jonas</P></BODY></HTML> Tue, 09 Jun 2009 14:07:37 GMT https://community.cisco.com/t5/network-security/pix-515e/m-p/1233576#M502953 j.conceicao 2009-06-09T14:07:37Z