• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3536
  • Last Modified:

Remote Login to Cisco Router Fails

When attempting to use Cisco Configuration Professional to "Discover" and connect to my Cisco 2921 ISR (Second Generation), I receive the error: "Discovery could not be completed because the security certificate was rejected." SSHv2 login also fails, but with no errors.

There has been no change to the router configuration since the last time it worked.
The certificate being used is self signed.
Yes. I've already restarted the router (pulling a known good startup-config), which had not impact.

On reboot, the console indicates the following errors:
SSHv2  RSA Signature Generation Failed: Status 8
SSHv2  Signature creation failed: Status 22

show ip ssh, displays the key info as expected, and show ssh shows SSHv2 running, but with no connected sessions.

Any thoughts on why remote access spontaneously stopped working?

Matthew England
Matthew England
1 Solution
Have you tried to regenerate a new self signed key?

I know that this does not get to the root cause but it should be able to get you back up and running.

Matthew EnglandTechnology ConsultantAuthor Commented:
Yes. Creating a new self signed key works and is fine for this time, but it'd be nice to know why this occurred. And how to prevent it from happening again.

crypto key zeroize rsa
crypto key generate rsa

This time I was onsite and able to get in to the router, but there's a point to having remote access. If it's going to randomly fail... what's the point in having it?
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now