Cisco 950032QC - SSH Disabled - version 2.0

mrshabbs · ‎07-04-2024

Hi All

I cannot get SSH enabled on a cisco950032QC

cat9k_iosxe.17.09.05.SPA.conf

i have created a domain name, reset the cryptokey (crypto key zeroise) and generated a new key, yet ssh is disabled

hostname#crypto key generate rsa modulus 2048
% You already have RSA keys defined named hostname.com.
% They will be replaced.

% The key modulus size is 2048 bits

% Generating crypto RSA keys in background ...

hostname#
Jul 4 10:51:29.229: %CRYPTO_ENGINE-5-KEY_DELETED: A key named hostname.xxx.com has been removed from key storage
Jul 4 10:51:29.858: %CRYPTO_ENGINE-5-KEY_ADDITION: A key named hostname.xxx.com has been generated or imported by crypto-engine

hostname#sh ip ssh
SSH Disabled - version 2.0
%Please create RSA keys to enable SSH (and of atleast 2048 bits for SSH v2).

Any ideas please?

MHM Cisco World · ‎07-04-2024

use
show ssh <<- share about here

MHM

mrshabbs · ‎07-10-2024

Here are the cmds that were used to resolve my issue:-

Router(config)#no ip ssh rsa keypair-name ssh

Router(config)#do crypto key zeroize

Router(config)#crypto key generate rsa general-keys modulus 2048

Router(config)#ip ssh version 2