Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2593
Views
3
Helpful
7
Replies

Can putty to Cisco Nexus switches, but can't ssh from secure crt

Go to solution
DSterling
Level 1
Level 1

‎01-22-2024 12:43 PM

Recently we updated our Nexus C93180YC-FX to IOS nxos64-cs.10.2.6.m.bin. Prior to the update I could access using secure crt, now I can't access with secure crt, have to use putty.  I did a crypt key generate modulus 2048 and ssh key rsa 2048 force. No change. The result is connection closed, but with putty there is no problem. 

 

Thank you,

Dave

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
DSterling
Level 1
Level 1

‎01-30-2024 08:37 AM

I had to update Secure CRT to a newer version, version 9.0.1, it was 8.5

View solution in original post

0 Helpful
7 Replies 7

Go to solution
MHM Cisco World
VIP
VIP

‎01-22-2024 12:54 PM

Show ssh key 

Share this 

MHM

0 Helpful

Go to solution
DSterling
Level 1
Level 1
In response to MHM Cisco World

‎01-23-2024 06:46 AM

I can't share the ssh key, the Nexus switch is on a secure network. I do see that the bitcount for 2 Nexus switchs I can still access with secure crt is 1024 and for the ones I can only access with putty it's 2048. 

When I do a show crypto key mypubkey rsa on the switches accessable with secure crt there is nothing displayed. 

When I do a show crypto key mypubkey rsa on the switches that are not accessable with secure crt (putty only):                                                                               Key label: SW name                                                                                                                                                                           key size: 2048                                                                                                                                                                                   exportable: no                                                                                                                                                                                   key-pair already generated

0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎01-22-2024 01:49 PM

@DSterling wrote:
Recently we updated our Nexus C93180YC-FX to IOS nxos64-cs.10.2.6.m.bin. Prior to the update I could access using secure crt

Look at the error message in the logs of the switch and compare the Key Exchange section of SecureCRT.  I am suspecting diffie-hellman is enabled and is on top of the list.

Go to solution
DSterling
Level 1
Level 1
In response to Leo Laohoo

‎01-23-2024 07:02 AM

diffie-hellman is not on, there are other diffe-helman features on, I unchecked them and still no success. I'm thinking it's a RSA key issue, but I'm not sure why. 

I do see that the bitcount for 2 Nexus switchs I can still access with secure crt is 1024 and for the ones I can only access with putty it's 2048. 

When I do a show crypto key mypubkey rsa on the switches accessable with secure crt there is nothing displayed. 

When I do a show crypto key mypubkey rsa on the switches that are not accessable with secure crt (putty only):                                                                               Key label: SW name                                                                                                                                                                           key size: 2048                                                                                                                                                                                   exportable: no                                                                                                                                                                                   key-pair already generated

0 Helpful

Go to solution
Richard Pidcock
Level 1
Level 1

‎01-22-2024 02:47 PM

Are you using a saved SecureCRT session?  Have you tried deleting the saved session and then recreating it?  I'll be interested to find out as all of my Nexus switches are currently on 10.2.5.

 

Richard W. Pidcock

Go to solution
DSterling
Level 1
Level 1
In response to Richard Pidcock

‎01-23-2024 07:00 AM

Tried a new session and no success. 

0 Helpful

Go to solution
DSterling
Level 1
Level 1

‎01-30-2024 08:37 AM

I had to update Secure CRT to a newer version, version 9.0.1, it was 8.5

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card