How to solve SSH Connection Issue on senhasegura Proxy

Problem:

When trying to connect via SSH proxy to senhasegura, the following error message is displayed:


user@machine:/home/user$ ssh admin@<DEVICE_IP>

Unable to negotiate with <DEVICE_IP> port 22: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha1, diffie-hellman-group1-sha1, diffie-hellman-group14-sha1

Solution:

The issue is related to the target device using different key exchange methods than those supported. Here are some alternatives to solve this problem:

  1. Use senhasegura SSH Proxy Web:
  • Try using the senhasegura SSH proxy web instead of making the SSH session directly through the terminal.
  1. Add a New Key Exchange Algorithm:
  • Add a new key exchange algorithm to your device settings. For Cisco devices, configure to use id_rsa.
  1. Pass the Algorithm in the SSH Connection String:
  • Use the SSH connection string passing the algorithm when connecting to the SSH proxy.

By using the senhasegura proxy, it is still possible to record sessions and take advantage of other security features. For more information on encryption and technical specifications of SSH sessions, refer to the documentation: senhasegura Technical Specifications.