"在9.16.1P1 9.16.1P1及更高版本上发生ssh.sshrsa.defDisabledFuture"错误

最后更新
另存为PDF

Views:: 3

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: core

Last Updated:

适用场景

ONTAP 9.16.1P1及更高版本

问题描述

9.16.1P1 9.16.1P1及更高版本在EMS.LOG中报告以下错误：

Message Name: ssh.sshrsa.defDisabledFuture Severity: ERROR Description: This message informs the user that future ONTAP releases will, by default, disable the "ssh-rsa (RSA/SHA-1)" form of the signature scheme used with RSA keys for host-based authentication and publickey-based user authentication. Corrective Action: To avoid future errors, do the following before upgrading to future ONTAP release, where RSA/SHA-1 will be disabled by default: 1. Upgrade previous SSH clients, using RSA/SHA-1 for host-based authentication or publickey-based user authentication to newer versions, or 2. Switch to other types of keys, both for host-based authentication and publickey-based user authentication, for example ECDSA or ED25519. If neither is possible, then in future ONTAP releases, RSA/SHA-1 can be reconfigured using the "security ssh modify" command or using the PATCH method on "/api/security/ssh" or "/api/security/ssh/svms/{svm.uuid}" REST API.