SSH connection refused

Question

I am having problems connecting to a 3324 via SSH.  I recieve a connection refused error when trying to connect.  I can access the switch via HTTP, Telnet, and Console.  This switch has a default configuration out of the box.  Version is 1.1.0.42.  Please let me know what I'm doing wrong.  thanks.

GregG1 · Answer

It sounds like you may not have created the crypto key pairs for SSH. Before trying to utilize SSH, you must create your RSA/DSA key pairs (private and public keys used for asymmetric encryption/decryption). Do do so, use the following commands:

(config)# crypto key generate rsa

(config)# crypto key generate dsa

Once the keys are generated and a user with level 15 access is created in the local database, you should be able to manage the switch via SSH. If you are still having problems connecting with your SSH client, you might try downloading PuTTY and try connecting using its SSH client. PuTTY can be downloaded from the link below.

http://www.chiark.greenend.org.uk/~sgtatham/putty/

IcedAnimal · Answer

Works great now.  Do you have any idea why https is not working?  It gives me a standard IE 'page cannot be displayed' error.  Thanks.

GregG1 · Answer

For HTTPS, you usually have to complete two steps:

Enable the HTTPS server. This is done using the "ip https server" command from global config mode.
Generate the RSA key used for the SSL certificate. This is done using the "crypto certificate generate key-generate" command. The default modulus (number of bits used for the key) is 1024. You can modify this using an optional bit length after at the end of the command.

You can check the status of the HTTPS server using the "show ip https" command.

Networking General

Was this post helpful?