ASA, Cisco, Cisco, Reference

SSH to Cisco ASA fails, unable to negotiate, no matching key exchange method found.

Turns out there is a very simple fix for this.

On the ASA

ssh key-exchange group dh-group14-sha1


Or as a quick work around you could add -oKexAlgorithms=+diffie-hellman-group1-sha1 in the client

bash>ssh -oKexAlgorithms=+diffie-hellman-group1-sha1


Tagged , ,

Leave a Reply