Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
917
Views
0
Helpful
1
Replies

ASDM without 3DES - Recovery wrong encryption license from remote

Arturo Bianchi
Level 1
Level 1

‎03-26-2021 02:32 AM

Hi,

following an incorrect license change, an appliance has lost its encryption protocols... after reboot it is not possible to access remotely via ssh to attempt a recovery:

 

ssh -1Selected cipher type <unknown> not supported by server.
ssh -2Protocol major versions differ: 2 vs. 1

 

so I just have to force access via ASDM or establish if it is possible to initialize a temporary SSL session in degradation! But at a first search of how to force java / asdm to connect the remote device I did not find anything interesting... why? Isn't it really possible to force ASDM to connect or did I miss some interesting article / solution?

 

Thanks!

 

73,
Arturo.

 

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-26-2021 06:34 AM

Your best path after having that situation is to connect via console and reapply a correct 3DES-AES license activation key.

As far as I know, ASDM (which uses the Java security modules) cannot be made to work with an ASA not having a valid 3DES-AES license active.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card