09-28-2022 04:04 PM
I have generated the keys using: cypto key generate rsa
Keysize is 4096
%Generating 4096 bit RSA keys, keys will be non-exportable...
[OK] (elapsed time was 225 seconds)
Switch(config)# show ip ssh
SSH Disabled - version 2.0
%Please create RSA keys to enable SSH
The line vty 0 4 has transport input ssh
Switch is a Catalyst 3560-CX
09-28-2022 04:51 PM
do u have domain name set up? if not add something or use your organization domain; if that does not work, u may need remove old keys; see https://community.cisco.com/t5/routing/enable-ssh-v2/m-p/1810524
Regards, ML
**Please Rate All Helpful Responses **
09-29-2022 11:35 AM
Yes the domain name is set up. The keys shows the domain name at the end of the key file.
09-29-2022 11:39 AM
I have reviewed the thread you provided. The problem is different. I have SSH V2 and I've generated the keys. I have the tranport input ssh statement in the config but, show ip ssh, always shows it as disabled.
09-29-2022 03:31 PM
As far as domain is set, the config shows:
ip domain-name MVP
Is that acceptable or should it be a fully qaualified domain name?
09-29-2022 04:07 PM
Fixed it. It looks like the key-pair name needed to be added to the command: crypto key generate rsa modulus 4096 label SSH-KEY
Now SSH shows enabled and I can SSH into it.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide