SSHエラー:一致するホストキーが見つかりません
環境
- ONTAP 9
- FIPS 有効
問題
- SSHが次のエラーで失敗します。Not matching host key type found
- sshを試行したときに以下のエラーが表示される
0000001f.0013d43b 0a0aa02a Tue Dec 05 2023 12:19:38 -05:00[auth:error] 1 2023-12-05T12:19:38.097331-05:00 node_01 sshd 64219 --error: WARNING: UNPROTECTED PRIVATE KEY FILE!
0000001f.0013d43d 0a0aa02a Tue Dec 05 2023 12:19:38 -05:00[auth:error] 1 2023-12-05T12:19:38.097371-05:00 node_01 sshd 64219 --error: Permissions 0644 for '/etc/ssh/ssh_host_ecdsa_key' are too open.
0000001f.0013d43e 0a0aa02a Tue Dec 05 2023 12:19:38 -05:00[auth:error] 1 2023-12-05T12:19:38.097381-05:00 node_01 sshd 64219 --error: It is required that your private key files are NOT accessible by others.
0000001f.0013d43f 0a0aa02a Tue Dec 05 2023 12:19:38 -05:00[auth:error] 1 2023-12-05T12:19:38.097391-05:00 node_01 sshd 64219 --error: This private key will be ignored.
0000001f.0013d440 0a0aa02a Tue Dec 05 2023 12:19:38 -05:00[auth:error] 1 2023-12-05T12:19:38.097767-05:00 node_01 sshd 64219 --error: Public key for /etc/ssh/ssh_host_ed25519_key does not match private key
0000001f.0013d441 0a0aa02a Tue Dec 05 2023 12:19:38 -05:00[auth:info] 1 2023-12-05T12:19:38.118093-05:00 node_01 sshd 64219 --Unable to negotiate with xxx.xxx.xx.xx port 51401: no matching host key type found.
Their offer:ssh-ed25519-cert-v01@openssh.com,ssh-ed25519,etc. etc.