For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Pilow's avatar
Pilow
Icon for Nimbostratus rankNimbostratus
Jan 11, 2024
Solved

Add ssh-rsa to 17.1.1 host key algorithm

 

Hello,

I've recently upgraded a HA pair of LTM devices to 17.1.1 and found out that I can no longer access the devices through 3rd party software SSH connection. I've been searching for the articles to resolve the issue but they only say I should upgrade the SSH connecting software or revise the settings of it which I can't since other network devices are connected as well.

I doubt this is because the OS versions later than 17.1.0 no longer support ssh-rsa.

Is there any way to add ssh-rsa to the device without changing anything on the 3rd party product?

application delivery
security
  • Michael_Saleem's avatar
    Michael_Saleem
    Jan 17, 2024

    Good find.

    Unfortunately, I do not think there is any alternative way. The only thing I can think of is possibly proxying the SSH client connection via a Jumphost server which supports the ssh-rsa host key algorithm.

    You may want to create a Support Case with F5 to see if they are able to provide any further suggestions.

4 Replies