https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997917#M918066 <HTML><HEAD></HEAD><BODY><P>FYI-</P><P></P><P>To remove the keys on an ASA device.</P><P></P><P><CODE><FONT size="2">ASAOne(config)# crypto key zeroize rsa default</FONT></CODE></P><P>WARNING: The default key pair will be removed</P><P>WARNING: All device certs issued using these keys will also be removed and</P><P>the associated trustpoints may not function correctly.</P><P></P><P>Do you really want to remove these keys? [yes/no]: yes</P><P>ASAOne(config)# </P><P></P></BODY></HTML> Thu, 19 Jun 2008 17:38:02 GMT Collin Clark 2008-06-19T17:38:02Z https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997914#M918063 <P>Hi,</P><P></P><P>i encounter the problem not be able to ssh to my ASA5510 anymore. the log shows a entry with "Resource 'ssh' limit of 5 reached for context 'single_vf'". i found already some posts on the internet stating to regenerate the rsa key. i did it with "crypto key generate rsa modulus 1024", but this didn't helped a bit. i'm still getting the error in the log and not able to ssh to it. i found a post saying to 'zeroize rsa' first, but i have no idea how to do that. any suggestions?</P><P></P><P>ct,</P> Mon, 11 Mar 2019 13:01:45 GMT https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997914#M918063 ttieuropecco 2019-03-11T13:01:45Z https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997915#M918064 <HTML><HEAD></HEAD><BODY><P>The only way I've been able to SSH again is to reboot the firewall. I've been waiting for it to happen again so I can open a TAC case. Maybe you could do that and let's us know what Cisco says?</P></BODY></HTML> Thu, 19 Jun 2008 15:36:35 GMT https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997915#M918064 Collin Clark 2008-06-19T15:36:35Z https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997916#M918065 <HTML><HEAD></HEAD><BODY><P>&lt;<I found="" a="" post="" saying="" to="">&gt;</I></P><P></P><P>I think I've had this happen to me before, and I think rebuilding the keys worked. I believe that on 6.3 the syntax is "ca zeroize rsa". I don't see it in the command reference document for 7.2, but that doesn't mean it's not there. Hope it works for you.</P></BODY></HTML> Thu, 19 Jun 2008 17:23:24 GMT https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997916#M918065 jbatluck 2008-06-19T17:23:24Z https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997917#M918066 <HTML><HEAD></HEAD><BODY><P>FYI-</P><P></P><P>To remove the keys on an ASA device.</P><P></P><P><CODE><FONT size="2">ASAOne(config)# crypto key zeroize rsa default</FONT></CODE></P><P>WARNING: The default key pair will be removed</P><P>WARNING: All device certs issued using these keys will also be removed and</P><P>the associated trustpoints may not function correctly.</P><P></P><P>Do you really want to remove these keys? [yes/no]: yes</P><P>ASAOne(config)# </P><P></P></BODY></HTML> Thu, 19 Jun 2008 17:38:02 GMT https://community.cisco.com/t5/network-security/ssh-stopped-working/m-p/997917#M918066 Collin Clark 2008-06-19T17:38:02Z