SSH is enabled in the firewall and configured correctly, however SSH connection to the firewall does not work.
* SSH to the firewall stopped working
* get ssh shows “ SSH is enabled”, but “SSH is NOT ready for connections”
Firewall-> get ssh
SSH V2 is active
SSH is enabled
SSH is NOT ready for connections
Maximum sessions: 3
Active sessions: 0
Solution
# Confirm that the SSH host-key is generated correctly:
get ssh host-key
If no host-key is present, delete the ssh device and re-enable SSH to regenerate the host-key:
delete ssh device all
set ssh version <v1 or v2>
set ssh enable
# If the issue continues, verify the system clock is functioning correctly. To generate a SSH host-key for the device, the system clock needs to function correctly. This can be verified with the following command:
get clock (multiple times at interval of few seconds)
If the system clock is not working correctly, it may be a hardware clock issue in the device and may require a RMA.
Incoming search terms:
- nsm unable to retrieve device ssh key (4)
- ssh from netscreen (3)
- netscreen unable to process key (2)
- juniper ssh not working (2)
- netscreen ssh key storage (2)
- nsmxpress retrieve ssh key from device (2)
- clear netscreen ssh connections (2)
- nsm 2010 trouble unable to retrieve ssh key (2)
- juniper nsm unable to retrieve device ssh key (2)
- nsm Device Broker is not ready for incoming device connection (1)