Question
How to regenerate SSH public/private key on Versa Director?
Solution
The installation of Versa Director includes self-signed trusted certificates and a certificate repository that enables secure data transfer between the Versa Director server and the client using secure “Secure Socket
Layer (SSL)” encryption. The self-signed certificates contain the Common Name (CN), which is the Fully Qualified Domain Name (FQDN) of the host. The certificates aid in authentication of Versa Director servers and clients before connecting with each other. They also contain keys to establish an encrypted and secure connection.
Versa recommends using a self-signed certificate for proof of concept and lab testing.
For production environments, you can import an existing private key and certificate signed by an external Certification Authority (CA). Alternatively, you can generate certificates and a certificate repository using a different CN or domain, if required.
Follow these steps to regenerate SSH public/private key on Versa Director:
- Run the ssh-keygen command.
- Run the sudo /opt/versa/vnms/scripts/push_keys_to_device.sh <IP address of device> [ password of the device] command, from the Director, to push the SSH keys to CPEs/Controllers which are already attached.