Solved: Hi Jagmeet, thank you for the

TECH-JEFF · ‎01-19-2016

Hi, been playing around with Cisco's packet tracer, I started from scratch and did the following:

1. hostname

2. ip domain-name

3. crypto key

4. line vty 0 4 and transport input ssh

5. set ip address

linked a pc/client, was able to ping and by typing

ssh -l <username> <ip>...was successful in connecting via ssh but when I type in show run on the client, still I dont see the crypto key configured earlier.

Is this a bug with packet tracer?

Thanks

Jeff

Jefferson Co

jagmeesi · ‎01-19-2016

Hi Jeff

Just check on a 2911, using IOS version 15.3.3, was not able to see the Key in running config.

It might be the certificate that you were able to observer earlier.

Regards

Jagmeet

View solution in original post

jagmeesi · ‎01-19-2016

Hi ,

Private keys cannot be seen in running configuration,

Try to use "show crypto key mypubkey rsa", to see the private keys.

Regards,

Jagmeet

TECH-JEFF · ‎01-19-2016

Hmmm, this is kind of weird, I tried to do a show run in one of our router and L3 switch but it shows up the crypto key. The model numbers of these devices are 2911 router and 4500 series L3 switch

Let me double check again

Thanks

Jeff

Jefferson Co

jagmeesi · ‎01-19-2016

Hi Jeff

Just check on a 2911, using IOS version 15.3.3, was not able to see the Key in running config.

It might be the certificate that you were able to observer earlier.

Regards

Jagmeet

TECH-JEFF · ‎01-19-2016

Hi Jagmeet, thank you for the input. Yes, I think you're referring to this.

crypto pki trustpoint TP-self-signed-3107798699

enrollment selfsigned

subject-name cn=IOS-Self-Signed-Certificate-3107798699

revocation-check none

rsakeypair TP-self-signed-3107798699

!

crypto pki certificate chain TP-self-signed-3107798699

certificate self-signed 01

3082024E 308201B7 A0030201 02020101 300D0609 2A864886 F70D0101 04050030

31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274

69666963 6174652D 33313037 37393836 3939301E 170D3131 31313135 32333034

31375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649

4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 31303737

39383639 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281

8100B3B2 768E14B7 6F189880 9CCED414 07C7BBC4 08165212 D476C04C ACC9AD10

0BBD20C8 D4E08302 7F24F05F 337687BC FEA645CB C721E675 51FF1295 A1227E9D

F088A2B4 5C65276F 3C7536AD 1BC545ED 9CF36264 ACF49EDB A794EBD5 10AB48A8

B1B40FCC 58AEA175 E417D577 5E5413DE BC40C513 190B9255 24D96B59 7174CF1F

8CD50203 010001A3 76307430 0F060355 1D130101 FF040530 030101FF 30210603

551D1104 1A301882 16313830 315F4564 67652E53 756C6C69 76616E2E 6F726730

1F060355 1D230418 30168014 BB0AB0E4 D5C07F30 DC9C2B98 70069FC5 AD1E7C41

301D0603 551D0E04 160414BB 0AB0E4D5 C07F30DC 9C2B9870 069FC5AD 1E7C4130

0D06092A 864886F7 0D010104 05000381 810033CC 23D11675 96E58E27 C80FE7D3

CC36D600 E9997AD3 5779F6BD 1C0C9DA7 06168085 9939D306 F86C180F 70F6FBF1

F75A5C62 70F993E9 F1A9407A 17C903BF AACA9EFA 48C3E557 6982D5C9 33CC6326

93FC603F 15C45E7D 78BAAC9D 2BA5AED2 6D6441C7 FE674D6B 40D79A22 ADF0EFB0

1DF28A9D 04695A07 D1E83C63 E8F7E17F 6109

Its actually one sample(dummy) crypto I copied from the internet. So this is the certificate you're referring to.

Thanks

Jeff

Jefferson Co

jagmeesi · ‎01-19-2016

Hi Jeff

Exactly, This output is of a Self-signed certificate.

Private keys are not configured in the running configuration.

Regards

Jagmeet

TECH-JEFF · ‎01-21-2016

ok, understand is there a command I can show this self-signed cert whenever I do a show run command?

Thanks

Jeff

Jefferson Co

crypto key not showing up in show run