Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1732
Views
5
Helpful
4
Replies

Fetch SSH host keys in the python part of a service?

Go to solution
bfinnema
Cisco Employee
Cisco Employee

‎10-19-2020 04:53 AM

I know how to do fetch of ssh host keys for a device from NSO CLI or using RESTCONF API.

Is it possible to do fetch of ssh host keys from within the python part of a service, i.e. in the myService/python/myService/main.py?

Looking at this one: https://community.cisco.com/t5/nso-developer-hub-discussions/ssh-fetch-host-keys-is-this-function-code-visible/td-p/3425348

But was still unable to figure out how to do it.

 

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
rogaglia
Cisco Employee
Cisco Employee

‎10-19-2020 05:57 AM

You typically do not want to have any device interactions during the critical part of a transaction. Best is to capture the error in the northbound system and do a separate API call to request the keys.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
kiran kotari
Cisco Employee
Cisco Employee

‎10-19-2020 05:32 AM - edited ‎10-19-2020 05:32 AM

Hi bfinnema,

You can fetch the value as follows

dev = root.devices.device['ios-dev0']
list(dev.ssh.host_key)[0].show_fingerprint().value

Thanks,

Kiran Kumar

Go to solution
rogaglia
Cisco Employee
Cisco Employee

‎10-19-2020 05:57 AM

You typically do not want to have any device interactions during the critical part of a transaction. Best is to capture the error in the northbound system and do a separate API call to request the keys.

0 Helpful

Go to solution
bfinnema
Cisco Employee
Cisco Employee

‎10-19-2020 06:06 AM

Hi Kiran,

Thank you for the response. This assumes that I have already fetched the host keys and just want to view them. Because I have not done that, I get "IndexError: list index out of range".

What I want to do is fetch the host keys from the device. I have this status of the device:

admin@ncs# devices device asr9001 check-sync
result error
info Failed to authenticate towards device asr9001: Unknown SSH host key

I know I can fetch host keys using CLI like this:

admin@ncs(config)# devices device asr9001 ssh fetch-host-keys

But I want to do it within the python part of a service. How can I do that?

 

Kind Regards

/Bo

0 Helpful

Go to solution
kiran kotari
Cisco Employee
Cisco Employee

‎10-19-2020 10:26 PM

It's straight  fwd, and I have update the output possibility in the above link which u shared.

dev = root.devices.device['asr9001']
output = dev.ssh.fetch_host_keys()
# I have pasted the yang for output possibility in the link u shared
# based on output you can take steps accordingly
0 Helpful
Customers Also Viewed These Support Documents