Guest

Preview Tool

Cisco Bug: CSCvv57565 - DCNM cannot modify SSH key configuration with Enable Strict Config Compliance enabled

Last Modified

Sep 11, 2020

Products (1)

  • Cisco Data Center Network Manager

Known Affected Releases

11.4(1)

Description (partial)

Symptom:
A DCNM-managed fabric with the Enable Strict Config Compliance option enabled will not be able to remove or modify SSH key configuration from managed devices.

For example, when attempting to execute the below command on a managed Nexus 9000 switch, DCNM reports an error message.

no ssh key rsa 2048 force

The error message reported is as follows:

ssh server is enabled, cannot delete/generate the keys

Conditions:
1. DCNM-managed fabric with Enable Strict Config Compliance option enabled
2. Devices wtihin the fabric have SSH key configuration that needs to be removed or modified due to a non-compliant policy.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.