cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
510
Views
0
Helpful
1
Replies
Highlighted
Beginner

SSH access to admin context on standby ACE in a redundancy mode

Hi

I am facing an issuse of ssh accessing to the admin context of the standby ACE in a Active/Active Fault-Tolerance peer.

I can ssh to the admin context of the active ACE. However, I cannot ssh to the admin context of the standby ACE.

Should I also generate SSH key in the Admin context of standby ACE as well?

Here is the result of show ssh key on the Admin context of Standby ACE

**************************************

could not retrieve rsa1 key information

**************************************

rsa Keys generated:Thu Nov  8 23:15:04 2012

ssh-rsa AAADASDFSfsf==

bitcount:2048

fingerprint:

xx:xx:aa:ss:sx:ss

**************************************

could not retrieve dsa key information

**************************************

1 REPLY 1
Highlighted
Cisco Employee

Hi,

I would suggest opening a TAC case for this issue.

It could be:

CSCti68403 —In a redundant configuration, after you reload the standby ACE, the SSH Keys on the standby are not always synchronized with the SSH keys on the active. Workaround: None

CSCso92243 -Not able to ssh stanby in any case.

CSCtd67023 -- /tmp file system got full b'cos of customer script doing repeated login/logout. /var/log/wtmp file was occupying all of /tmp file system.  This can also cause the issue.

Try reloading of standby ACE and generate keys on ACTIVE and see if they get sync'd to the standby ACE.

Regards,

Kanwal

This widget could not be displayed.