On older versions of the ASDM you could generate the keypair in the Identification Certificates section (well you still can but only if you are also generating a certificate request file). Add a AAA Server Group by clicking Add on the top-right Enter a name for the Server Group Pick LDAP as the protocol Enter 1 for the Realm-id Change any other settings as you see fit. Go to Device Management > Users/AAA > AAA Server Groups Advertisement 3. Now at command line you can fix this with a ‘ Crypto Key Generate RSA Modulus 2048‘ command, but you can’t get to command line only ASDM. Log in to the ASA with ASDM (CLI steps below) 2. OSX/Linux: ssh_exchange_identification: Connection closed by remote host. PuTTY: PuTTY Fatal Error: Server unexpectedly closed network connection. RoyalTS and RoyalTSX: ssh_exchange_identification: Connection closed by remote host. Generate the key as an SSH-2 RSA key pair. Then even if SSH access and AAA is setup correctly, you still can’t get in via SSH. Firstly you need to generate a PuTTY key pair. I’ve lost count of the number of times this has happened to me! Most of my colleagues prefer to use the ASDM for remote management, but if (like me) you work at command line, then sometimes people forget to generate the RSA keypair when deploying a firewall.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |