04-25-2019 01:11 PM - edited 04-25-2019 01:12 PM
I recently upgraded my IE2000 switches to the "crypto" version of firmware [15.2(6)E2a Crypto UNIVERSAL] now I receive an error either by connecting through https or ssh that there is an invalid key length. It appears that the switch needs to have a new key generated to using a greater length than 1024. However when I try this, certain crypto commands seem to be missing. For example when I try "crypto key generate rsa modulus 2048" it says invalid input. If I use help the only option I have for crypto key is "lock" and "unlock". These Industrial Switches seem to have a limited command set from IOS so I am not sure how I solve this problem. Any ideas? Thanks!
Solved! Go to Solution.
04-25-2019 05:25 PM
Almost. In config mode try:
crypto key generate rsa general-keys modulus 2048
or try going a step further:
crypto key generate rsa general-keys modulus 4096
04-25-2019 05:25 PM
Almost. In config mode try:
crypto key generate rsa general-keys modulus 2048
or try going a step further:
crypto key generate rsa general-keys modulus 4096
04-26-2019 10:26 AM
Philip,
I knew I was close, so thank you for getting me the rest of the way!!!
Mark
04-25-2019 05:26 PM
If you are seeing "lock" it means you have used the "crypto" command while not in "config t".
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide