[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3463
  • Last Modified:

Remote Login to Cisco Router Fails

When attempting to use Cisco Configuration Professional to "Discover" and connect to my Cisco 2921 ISR (Second Generation), I receive the error: "Discovery could not be completed because the security certificate was rejected." SSHv2 login also fails, but with no errors.

There has been no change to the router configuration since the last time it worked.
The certificate being used is self signed.
Yes. I've already restarted the router (pulling a known good startup-config), which had not impact.

On reboot, the console indicates the following errors:
SSHv2  RSA Signature Generation Failed: Status 8
SSHv2  Signature creation failed: Status 22

show ip ssh, displays the key info as expected, and show ssh shows SSHv2 running, but with no connected sessions.

Any thoughts on why remote access spontaneously stopped working?

 
0
Matthew England
Asked:
Matthew England
1 Solution
 
fs40490Commented:
Have you tried to regenerate a new self signed key?

I know that this does not get to the root cause but it should be able to get you back up and running.

0
 
Matthew EnglandAuthor Commented:
Yes. Creating a new self signed key works and is fine for this time, but it'd be nice to know why this occurred. And how to prevent it from happening again.

crypto key zeroize rsa
crypto key generate rsa
2048

This time I was onsite and able to get in to the router, but there's a point to having remote access. If it's going to randomly fail... what's the point in having it?
0

Featured Post

Prep for the ITIL® Foundation Certification Exam

December’s Course of the Month is now available! Enroll to learn ITIL® Foundation best practices for delivering IT services effectively and efficiently.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now