07-10-2007 01:36 PM - edited 03-03-2019 05:47 PM
I am working on configuring an ASA 5520. I am able to use asdm and telnet to configure. I am unable to ssh to the device. I have generated keys and set the time out and tries. I am unable to make a ssh connection with any of the accounts i created, priv 15. At the same time I can use the accounts to log into ASDM. All of this was done through CLI. What could i have overlooked, any ideas? thanks.
07-17-2007 10:49 AM
Please click the below URL for not Denied SSH Access.
http://www.cisco.com/en/US/tech/tk583/tk617/technologies_tech_note09186a0080094314.shtml#intro
07-17-2007 11:08 AM
Henry
This is an interesting link. But it is specifically about configuring SSH for Catalyst switches and the original post was about problems with SSH on an ASA not on a Catalyst.
Does the configuration of the ASA identify the address ranges allowed to access the ASA via SSH?
If you attempt access via SSH and it fails are there any entries in the logs about this?
HTH
Rick
07-17-2007 11:02 AM
Hi Brad
First of all check , Your IOS support SSH feature or not, if yes, you need to enable ssh on device, i belive when you are doing this, it will not in running config .For vafication you need to put commnand below
show ip ssh ....i belive,
please rate this post if help
-Minu
07-17-2007 12:43 PM
That should have what you need.
06-22-2013 07:07 AM
what does the "debug ssh" shows, when the ssh fails?
also check if the host is in the access-list
ssh x.x.x.x m.m.m.m INSIDE/OUTSIDE
and
aaa authentication ssh console LOCAL
if you re using local credentials
last but not least try zeroizing rsa modulus key and re generate.
09-28-2020 03:56 PM
This solved the problem for me. I just needed to enable ssh with the aaa command.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide