04-25-2019 01:11 PM - edited 04-25-2019 01:12 PM
I recently upgraded my IE2000 switches to the "crypto" version of firmware [15.2(6)E2a Crypto UNIVERSAL] now I receive an error either by connecting through https or ssh that there is an invalid key length. It appears that the switch needs to have a new key generated to using a greater length than 1024. However when I try this, certain crypto commands seem to be missing. For example when I try "crypto key generate rsa modulus 2048" it says invalid input. If I use help the only option I have for crypto key is "lock" and "unlock". These Industrial Switches seem to have a limited command set from IOS so I am not sure how I solve this problem. Any ideas? Thanks!
Solved! Go to Solution.
04-25-2019 05:25 PM
Almost. In config mode try:
crypto key generate rsa general-keys modulus 2048
or try going a step further:
crypto key generate rsa general-keys modulus 4096
04-25-2019 05:25 PM
Almost. In config mode try:
crypto key generate rsa general-keys modulus 2048
or try going a step further:
crypto key generate rsa general-keys modulus 4096
04-26-2019 10:26 AM
Philip,
I knew I was close, so thank you for getting me the rest of the way!!!
Mark
04-25-2019 05:26 PM
If you are seeing "lock" it means you have used the "crypto" command while not in "config t".
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: