Fortigate SSH Server Generate New RSA Key Pair

Forum|Forum|8 years ago
November 23, 2017
1 reply
48743 views

Hello,

Does anybody know how to generate a FortiGate SSH Server new RSA Key Pair - if it is possible at all.

Where is the default RSA key pair located on a FortiGate?

$ ssh -l admin x.x.x.x The authenticity of host 'x.x.x.x (x.x.x.x)' can't be established. RSA key fingerprint is 69:b7:62:fe:57:0b:bb:db:c3:87:bf:12:95:d0:c5:5d.

Are you sure you want to continue connecting (yes/no)?

Thanks.

virtualj

New Member

Hello, have you found an answer?

I'm looking how to align ssh key between firewalls in the same cluster.

thank you, regards.

emnoc

New Member

You can upgrade the unit that will create a new key, if you swap act/std ( assuming ACT/STD ) that would present the new cert. So why do you need to create a new ssh-key ?

As far as the key it's stored locally in the file path and not directly accessible ( look at the RSA key )

http://socpuppet.blogspot.com/2014/08/your-fortigate-is-not-as-secured-as-you.html

Ken Felix

virtualj

New Member

The article you posted is regarding the https private key.

I'm looking to ssh fingerprint and for sync it in the cluster. This because I have scripts that logging to the firewall to get ore set the config, but if the firewalls swap from active/backup the ssh key will change and the script doesn't work

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded