Cannot SSH into PIX/ASA firewall

9Jul/091

Cannot SSH into PIX/ASA firewall

Issue:
When attempting to SSH into a PIX/ASA firewall you receive the following error on the client

ssh_exchange_identification: Connection closed by remote host

Investigating the log on the PIX/ASA will yield a corresponding error:

Fail to establish SSH session because RSA host key retrieval failed.

Cause:
The issue is the result of a corrupt or missing RSA key on the firewall.

Resolution:
You need to generate a new RSA key on the firewall.

Magic juju (from either SDM or a prompt):

conf t
ca generate rsa key 1024
wr mem
copy run start

Filed under: Hardware, Networking, Security, sysadmin Leave a comment

Comments (1) Trackbacks (0) ( subscribe to comments on this post )

Viktor
September 29th, 2011 - 06:38
thank you so much !!!! i had looked at 10 sites before this one, spend a good day, this helped, thanks !!!!

#toots

fsck me #ebs
@patrickdoman You dig the management features.
@steveklabnik or the thundering herd created by the update traffic. Either way, ridiculous.
#zfs and #solaris saved my data. 3 TB of storage, still consistent. raidz2 and #zfs ftw.
@stanleyiii Perhaps he will be signing copies from jail. The title is apropos, no?
Really? http://t.co/Ro5hNPiQ

Solutions Log by Dan Reiland

Cannot SSH into PIX/ASA firewall

Leave a comment Cancel reply

#toots

#meta