cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
264
Views
15
Helpful
3
Replies
Highlighted
Beginner

Invalid key length on IE2000 switch

I recently upgraded my IE2000 switches to the "crypto" version of firmware [15.2(6)E2a Crypto UNIVERSAL] now I receive an error either by connecting through https or ssh that there is an invalid key length. It appears that the switch needs to have a new key generated to using a greater length than 1024. However when I try this, certain crypto commands seem to be missing. For example when I try "crypto key generate rsa modulus 2048" it says invalid input. If I use help the only option I have for crypto key is "lock" and "unlock". These Industrial Switches seem to have a limited command set from IOS so I am not sure how I solve this problem. Any ideas? Thanks!

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
VIP Advisor

Re: Invalid key length on IE2000 switch

Almost.  In config mode try:

crypto key generate rsa general-keys modulus 2048

or try going a step further:

crypto key generate rsa general-keys modulus 4096

3 REPLIES 3
VIP Advisor

Re: Invalid key length on IE2000 switch

Almost.  In config mode try:

crypto key generate rsa general-keys modulus 2048

or try going a step further:

crypto key generate rsa general-keys modulus 4096

Beginner

Re: Invalid key length on IE2000 switch

Philip,

 

I knew I was close, so thank you for getting me the rest of the way!!!

 

Mark

VIP Advisor

Re: Invalid key length on IE2000 switch

If you are seeing "lock" it means you have used the "crypto" command while not in "config t".

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards