Bug ID 1305125: Ssh to localhost not working with ssh-rsa

Last Modified: Feb 07, 2024

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
17.1.0.1, 17.1.0.2, 17.1.0.3

Fixed In:
17.1.1

Opened: Jun 07, 2023

Severity: 3-Major

Symptoms

The password prompt is not displayed when trying ssh to localhost.

Impact

SSH to localhost will not work.

Conditions

1. Create test_user, # tmsh create auth user test_user password abcde shell bash session-limit -1 partition-access replace-all-with { all-partitions { role admin } } # tmsh save sys config 2. Try login localhost using test_user, config # ssh test_user@localhost config # --->!!!!! no password prompt shown up

Workaround

Ssh-rsa key was deprecated on 17.1.0,1 and need to replace/copy ECDSA key to ssh_known_hosts. Replacing the RSA key in ssh_known_hosts with the ECDSA key. sed -ie '/^localhost/s//#&/' /config/ssh/ssh_known_hosts; echo "locahost,localhost.localdomain $(cat /config/ssh/ssh_host_ecdsa_key.pub)" >> /config/ssh/ssh_known_hosts

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips