I am in a process of upgrading NSX 6.2.4 by a customer in three locations deployed using VVD Deployment Toolkit. The NSX Upgrade itself went really smoothly. However, after the upgrade, we noticed that SFTP backup stopped working with an enigmatic error.
Unable to connect to server FQDN at 22. Either server details are invalid or invalid credentials are presented.( Common algorithms not found. )
<a href="https://www.wojcieh.net/wp-content/uploads/2017/10/nsx-backup-stopped-working.jpg"><img class="alignnone wp-image-6441" src="https://www.wojcieh.net/wp-content/uploads/2017/10/nsx-backup-stopped-working.jpg" alt="NSX Backup Stopped working" width="800" height="173" /></a><!--more-->
After checking credentials and SFTP backup destination server I found that with NSX 6.3.0 SFTP supports following backup ciphers:
Encryption: aes128-cbc, aes128-ctr, aes192-cbc, aes192-ctr, aes256-cbc, aes256-ctr
Message Authentication(mac): hmac-sha2-256
Key Exchanges: diffie-hellman-group-exchange-sha256
To fix the issue sshd config must be adjusted:
- Edit the .
- sshd_config keywords Cipher and MACs need to be updated with the correct Cipher and MAC algorithms.For example:
Once config change is done, restart ssh deamon and backup will start to work again.
My experience and skills have been proven by leading vendor certifications like AWS, Alibaba Cloud, VMware, and Microsoft. I contribute to IT community and I received VMware vExpert 2014 - 2017 and VMware vExpert NSX 2017 Award.
My blog wojcieh.net - was voted #43 in Top vBlog 2017 contest!
Do what you love, and you’ll never work another day in your life.
Latest posts by Wojciech Marusiak (see all)
- Top vBlog 2018 is there! - 20 November, 2018
- Zentyal – my new Homelab Swiss Army Knife - 10 October, 2018
- Send VMware backups to the cloud – Altaro Offsite Copies to an Azure Cloud Storage - 18 September, 2018