Enterprise Manager Generic (MOSC)

MOSC Banner

SSH connect to Linux targets fails due to key exchange algorithm negotiation fail

edited Jul 15, 2016 5:02AM in Enterprise Manager Generic (MOSC) 2 commentsAnswered

New Linux versions seem to restrict the SSH key exchange algorithms to prevent the logjam attack, which causes problems to roll out new EM Agents (12.1.0.4) to linux targets via SSH.

The EM SSH-Client (jsch.jar?) reports this error:

INFO:Error Message: PROV-16011: Algorithm negotiation fail

On the Linux server side you can see this error:

sshd[82598]: fatal: Unable to negotiate a key exchange method [preauth]

The SSHd only supports diffie-hellman-group-exchange-sha256 and elliptic curve diffie-hellman key exchange algorithms, which are unsupported by the jsch.jar version delivered with our EM version 12.1.0.4.

Is there a patch or update available, to update the jsch.jar library to the most current version 0.1.52, which would provide these new key exchange algorithm (see

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center