cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1256
Views
0
Helpful
1
Replies

how to generate an RSA key-pair for the PIX Firewall ?

chrrbc
Level 1
Level 1

How do I generate an RSA key-pair for the PIX Firewall 520 V6.1(1).

This seems to be required in order to use ssh to the PIX instead of telnet.

I tried ca gen rsa key 1024 , which I found in this forum, but it did not work at all -> ca is not known.

What is wrong? What do I have to do?

Thanks

1 Reply 1

chrrbc
Level 1
Level 1

I found out the solution myself.

Since "ca gen rsa key 1024" is a global configuration command, you have to be in #PIX(config) mode to be able to execute this command.

After generating the RSA key-pair I did a "ca save all".

SSH-userID is always "pix"(without quotes) on pix firewalls.

SSH-userID's password is equal to the former telnet password.

Review Cisco Networking for a $25 gift card