Guest

Preview Tool

Cisco Bug: CSCvu58000 - ENH: Ability to permanently add the SSH host key for an SCP server

Last Modified

Oct 09, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.14(1)

Description (partial)

Symptom:
This is an enhancement request

Currently, there is no option to permanently add the SSH host key for an SCP server in the configuration of the FTD. Whereas, on an ASA we can manually add it under the 'ssh pubkey-chain' command as shown below:

ssh pubkey-chain
  server 10.106.44.87
    key-hash sha256 88:a2:b1:4a:4f:3a:cd:4e:a6:2c:93:e2:f9:1c:02:29:6d:65:c7:93:e5:7a:10:eb:9f:03:d6:ee:7c:40:f6:c4

However, this is not supported natively on the FMC GUI. FlexConfig does not allow you to manually add these commands because the 'ssh' keyword is blacklisted.

Conditions:
This is an enhancement request
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.