cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
235049
Views
172
Helpful
18
Replies

Enable SSH V2

darp27609679
Level 1
Level 1

Hi, i have a switch 2960 24TC-L with c2960-lanbasek9-mz.150-1.SE.bin and SSH v1 enabled.

When i try to enable SSH v2 the swith tell me that i have to create a crypto key rsa. I generated the crypto key rsa with 1024 bits and when i try to enable the SSH v2 i receive the same message.

18 Replies 18

HI Peter,

 

I got another question. Now I was able to SSH and when I login i got a message beware of evesdropper. I know that the line VTY and aaa authentication was still there as well as the ACL. But I notice that the Crypto PKI truspoint TP Self Signed is empty. Is that normal after I removed the RSA?

 

WeezyF_0-1694585069161.png

WeezyF_1-1694585379504.png

 

 

 

 

 

ALEEE
Level 1
Level 1

Thanks a lot!

aananda
Cisco Employee
Cisco Employee

This helped me as well.

Hello,

Not necessary exactly the case, but similar. My case was then router did not allow to enable ssh even with keys (modulus 2048) already generated. The reason for that was unnecessary command then you do not use key pair ssh. So you may need to write the commands:

Router(config)#no ip ssh rsa keypair-name ssh

Router(config)#do crypto key zeroize

Router(config)#crypto key generate rsa general-keys modulus 2048

Router(config)#ip ssh version 2

That's it.

 

Review Cisco Networking for a $25 gift card