Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Resolving Key Conflicts

Devices that use public key-based authentication (that is keys generated and uploaded from Junos Space Network Management Platform) connect to Junos Space Platform by using RSA, DSS, or ECDSA Key public-key algorithms. If a new public key is generated from the Administration workspace when the device is disconnected or down, the device is unable to reconnect to Junos Space Platform when it comes back up. The Authentication Status column on the Device Management page shows that the device is in the Key Conflict state.

You can use the Resolve Key Conflict workflow to resolve the key conflict, then provide the new public key or use a custom private key to authenticate the device.

To resolve key conflicts:

  1. On the Junos Space Network Management Platform user interface, select Devices > Device Management.

    The Device Management page is displayed.

  2. Select the devices that are in the Key Conflict state.
  3. Right-click and select Device Access > Resolve Key Conflict from the Actions menu.

    The Resolve Key Conflict page that appears displays a list of devices with key conflict.

    You can either upload the new keys generated from Junos Space Platform or use a custom key to resolve the key conflict.


    1. To upload a custom key to the Junos Space server:

      1. Select the Use Custom Key option button.

        The Resolve Key Conflict page appears.

      2. (Optional) In the Passphrase field, enter the passphrase created when you generated the private key.

      3. Click the Browse button next to the Private Key field to upload the private key for the managed devices.

      4. In the Device Admin column, enter the administrator username for the devices listed in the corresponding cells.

      5. Click Resolve.

        The key conflicts are resolved and the devices are pushed to the Key Based state.


    2. To upload new keys:

      1. Select the Use Space Key option button.

        By default, this option button is selected.

        The Resolve Key Conflict page appears.

      2. In the Device Admin column, enter the administrator username for the devices listed in the corresponding cells.

        If the user does not exist on the device, a new user with the username is created.

      3. In the Password column, enter the administrator password in the corresponding cells.

      4. Click Resolve.

        The key configlets are resolved and the devices are pushed to the Key Based state.

To cancel the workflow, click Cancel.