Highlighted
aqwserf
2 Iron

Dell T320: ERROR: Key is too long

Jump to solution

Hello,

I'd like to add my 8192 ssh key to iDRAC, but it seems to be too long:

sudo /opt/dell/srvadmin/bin/idracadm7 -r <IP> -u root -p <PASSWORD> sshpkauth -i 2 -k 1 -f ~/.ssh/id_rsa.pub 
[sudo] password for user: 
Security Alert: Certificate is invalid - self signed certificate
Continuing execution. Use -S option for racadm to stop execution on certificate-related errors.
ERROR: Key is too long.    

After looking for this error, I found this article that says it's supposed to be solved with firmware 2.40.40.40. I'm on 2.63.60.62 but the issue remains.

As I don't plan to regenerate an other SSH key specifically for the iDRAC, is there another workaround ? Does Dell plan to fix this issue ?

Thank you.

Reply
1 Solution

Accepted Solutions
Highlighted
Moderator
Moderator

Re: Dell T320: ERROR: Key is too long

Jump to solution

Aqwserf,

 

The 8192 ssh key is indeed too long, as the max length would be 4096.

The article you referred to was addressing the issue that 4096 keys were also being flagged as too long with SSH 6.6, hence the workaround was to create the 4096 with an older tool. The 2.40.40.40 update resolved the 4096 being flagged as too long, not to increase the key length itself. 

 

Hope this helps.

Chris Hawk

Dell | Social Outreach Services - Enterprise
Get Support on Twitter @DellCaresPro 
Download the Dell Quick Resource Locator app today to access PowerEdge support content on your mobile device! (iOS, Android, Windows)

View solution in original post

Reply
3 Replies
Highlighted
aqwserf
2 Iron

Re: Dell T320: ERROR: Key is too long

Jump to solution

Nobody ?

As I previously said, Dell was supposed this issue and it's still not the case...

Reply
Highlighted
Moderator
Moderator

Re: Dell T320: ERROR: Key is too long

Jump to solution

Aqwserf,

 

The 8192 ssh key is indeed too long, as the max length would be 4096.

The article you referred to was addressing the issue that 4096 keys were also being flagged as too long with SSH 6.6, hence the workaround was to create the 4096 with an older tool. The 2.40.40.40 update resolved the 4096 being flagged as too long, not to increase the key length itself. 

 

Hope this helps.

Chris Hawk

Dell | Social Outreach Services - Enterprise
Get Support on Twitter @DellCaresPro 
Download the Dell Quick Resource Locator app today to access PowerEdge support content on your mobile device! (iOS, Android, Windows)

View solution in original post

Reply
Highlighted
aqwserf
2 Iron

Re: Dell T320: ERROR: Key is too long

Jump to solution

Thank you for your feedback, I get it.

Reply