Re: Enable SSH V2

douglasm10 · ‎09-28-2022

I have generated the keys using: cypto key generate rsa

Keysize is 4096

%Generating 4096 bit RSA keys, keys will be non-exportable...

[OK] (elapsed time was 225 seconds)

Switch(config)# show ip ssh

SSH Disabled - version 2.0

%Please create RSA keys to enable SSH

The line vty 0 4 has transport input ssh

Switch is a Catalyst 3560-CX

Martin L · ‎09-28-2022

do u have domain name set up? if not add something or use your organization domain; if that does not work, u may need remove old keys; see https://community.cisco.com/t5/routing/enable-ssh-v2/m-p/1810524

Regards, ML
**Please Rate All Helpful Responses **

douglasm10 · ‎09-29-2022

Yes the domain name is set up. The keys shows the domain name at the end of the key file.

douglasm10 · ‎09-29-2022

I have reviewed the thread you provided. The problem is different. I have SSH V2 and I've generated the keys. I have the tranport input ssh statement in the config but, show ip ssh, always shows it as disabled.

douglasm10 · ‎09-29-2022

As far as domain is set, the config shows:

ip domain-name MVP

Is that acceptable or should it be a fully qaualified domain name?

douglasm10 · ‎09-29-2022

Fixed it. It looks like the key-pair name needed to be added to the command: crypto key generate rsa modulus 4096 label SSH-KEY

Now SSH shows enabled and I can SSH into it.