Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
213139
Views
117
Helpful
20
Replies

SSH error message "No matching ciphers found"

Go to solution
asheemy
Level 1
Level 1

‎04-25-2018 02:32 PM - edited ‎03-08-2019 02:47 PM

Hello,

 

i have a new 3850 Switch and i configured ip ssh ver 2 and all ssh commands but when i access the switch using ssh i got "No matching ciphers found. Client (x.x.x.x) supported ciphers :  aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se .Server supported ciphers : aes128-ctr​".

 

"%SSH-3-DH_RANGE_FAIL: Client DH key range mismatch with minimum configured DH key on server​" log on switch

Also got " No compatible Cipher. The server supports these ciphers:aes128-ctr,aes192-ctr,aes256-ctr" message on my secureCRT

 

is there anyone face such issue.

37 people had this problem
Labels:
20 Replies 20

Go to solution
cmganoc5561
Level 1
Level 1
In response to wlauderdale

‎10-09-2020 05:43 PM

Hi guys! I know that has been already solved, but I would like to add a little bit more here. Since I was trying to scp the configuration files of my network devices to and from my linux repository server using Ansible for automation purpose, I was facing the same problem with the ssh clients on some of  my network devices. Then I've changed my /etc/ssh/sshd_config on my linux server adding the line "Ciphers aes128-cbc,aes192-ctr,aes256-ctr" to match the same kind of ciphers my ssh clients have on the network devices. After that, the ssh connection and the copy scp:// command worked fine.

 

Thank you all!

Go to solution
Ethan and Mia
Level 1
Level 1

‎01-24-2021 09:03 AM

Hi , How you solve it  ? Upgrade IOS ?

0 Helpful

Go to solution
Garry Cross
Level 1
Level 1
In response to Ethan and Mia

‎01-27-2021 01:23 PM

As stated in the previous replies. Otherwise ensure all your IOS's are of similar or the same vintage. Like browsers I am sure it is Cisco simply upgrading the security defaults.

Go to solution
LesterGaddy
Level 1
Level 1

‎01-27-2021 01:29 PM

I am also facing the same issue too when tried to connect from iOS 15.6 router to cisco sg500 switch. Just should to get connect with -c aes256-cbc or add command "ip ssh client algorithm encryption aes256-cbc" in your router config for working.

0 Helpful

Go to solution
DanVisan
Level 1
Level 1

‎06-05-2021 01:35 PM

Windows Command Prompt or Powershell:

 

ssh -c aes256-cbc -l admin 192.168.xxx.xxx

 

c - cipher spec

l - login name

0 Helpful

Go to solution
muhammednikhilmm
Level 1
Level 1

‎09-25-2022 10:25 PM - edited ‎09-25-2022 10:26 PM

I have solved the issue through enabling required ciphers as shown like attachment. 

please enable from CRT, session Options > connection > SSH2 > Advanced  > select the required cipher and MAC apply.

Screenshot_1.jpg

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card