cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
577
Views
0
Helpful
5
Replies

how to configure ssh ckient on LMS2.6 (Solaris)

janvandek
Level 1
Level 1

Hi,

Does someone knows how to configure the ssh client in LMS2.6 so that the Host key is not checked. (something like ssh -o StrictHostKeyChecking no).

Since we configured ssh on the network devices it seems that during the ssh session lms has to answer on Regenerate Key questions with yes/no. But how can I disable this interactive question?

Regards

Jan

5 Replies 5

Joe Clarke
Cisco Employee
Cisco Employee

LMS doesn't care about host keys. What exactly are you doing that you would need to answer such a question? Is this a Netconfig job?

Indeed,

The netconfig job fails since the ssh was configured on the devices.

How can LMS avoid host keys ?

Jan

What exactly is the error message you're seeing when the job fails? Exactly what commands are you deploying to the device?

We don't get an error message.

The process goes in timeout.

We use a sniffer to verify this.

So:

If we do this manually on the server (i.e. we use ssh to the device via cli) => it works. (the host key regeneration can be avoided by using the StrictHostKeySetting flag no )

If we use NetConfig it fails after 3 tries (timeouts). on most of the devices (300 succeeds, 500 fails)

Someone read that LMS should keep the host keys in some repository ?

Jan

No, LMS doesn't do anything with host keys. SSH keys are not your problem. Since you are using SSH, the sniffer will be of little use. What will be helpful is to enable ConfigJob debugging under RME > Admin > System Preferences > Application Loglevel Settings, run the job, then post the contents of the job directory under NMSROOT\files\rme\jobs\NetConfigJob on Windows and /var/adm/CSCOpx/files/rme/jobs/NetConfigJob on Solaris.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco