Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1564
Views
0
Helpful
5
Replies

%SSH-3-PRIVATEKEY: Unable to retrieve RSA private key

neeraj.k.rawat
Level 1
Level 1

‎10-03-2014 09:17 AM - edited ‎03-07-2019 08:58 PM

HI All,

I am having some issues on Cisco 3745 router.

i have generated crypto keys many times but issue is still persisting, i would appreciate if i can find some instant solution for SSH-3-PRIVATEKEY issue.

 

flash:c3745-advipservicesk9-mz.123-22.bin"

---

Oct  3 11:08:50.296: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 15:14:50.201: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 16:52:59.822: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 16:53:01.342: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 16:53:02.866: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 20:31:30.395: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0
Oct  3 22:06:05.617: %SSH-3-PRIVATEKEY: Unable to retrieve RSA private key for
-Process= "SSH Process", ipl= 0, pid= 4
-Traceback= 61C57C5C 61C54404 61C55BA4 619D9CEC 619D9CD0

 

 

 

Thanks,

Neeraj

Labels:
0 Helpful
5 Replies 5

Antonio Knox
Level 7
Level 7

‎10-03-2014 11:44 AM

You need to zeroize all of the keys you've created by entering

crypto key zeroize rsa label yourkeyname

Reload, then recreate your key.  Should work once you complete these steps.

 

If this post is helpful, please rate.  Thanks.

0 Helpful

neeraj.k.rawat
Level 1
Level 1
In response to Antonio Knox

‎10-03-2014 12:31 PM

i have tried to re-generate the key but havn't tried to reload the router because it's in production.

0 Helpful

Antonio Knox
Level 7
Level 7
In response to neeraj.k.rawat

‎02-20-2015 06:07 AM

neeraj.k.rawat,

Was your issue ever resolved?

0 Helpful

thiland
Level 3
Level 3
In response to Antonio Knox

‎10-04-2016 04:26 PM

The router doesn't need to be reloaded, but it seems to not find the private key even though it's there unless you specify it directly by Key Name.

sh cry key mypubkey rsa 
% Key pair was generated at: 16:16:06 MST Oct 4 2016
Key name: router.domain.local
 Usage: General Purpose Key
 Key is not exportable.
 Key Data:
  30820122 300D0609 2A864886 F70D01...

ip ssh rsa keypair-name router.domain.local
write mem
0 Helpful

ghostinthenet
Level 7
Level 7

‎10-03-2014 02:02 PM

Is your router automatically selecting an SSH key or is it configured to use a specific one? If it's configured to use a specific one (using the "ip ssh rsa keypair-name" configuration command) then you're going to get this error if that specific key isn't present.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card