SSH Shell fail - Couldn't agree a key exchange algorithm

Hello,

Could you tell us what version of PuTTY you updated to to fix this issue? Unfortunately, updating our integration with the latest version of PuTTY isn't as simple as it seems since we modified a lot of code to make it work inside RDM as well as giving it new functionalities.

Regards,

Hello,

I updated to 0.67

Thank you for the information. We will try to update our SSH integration as soon as possible since 0.67 is a stable release.

Regards,

Any update on this, I have the latest version of RDM, and not able to ssh to my pfSense???

Hi,
This is coming soon in beta. It's already implemented internally.

Regards

Hi,

Thank you very much for the prompt response, How can I get a copy of that Beta version, please?

It should be available next week:

https://remotedesktopmanager.com/Home/ThankYou?f=RDMsetupBeta

Regards

I downloaded the Beta from the link you have provided, and installed it, and I got the same error message of - Couldn't agree a key exchange algorithm

I tried to take a screenshot, but was not able to, how can I enable taking a screenshot of it? This is critical for us to use this product to ssh to pfSense. I am able to use SecureCRT, but RDM is not working. Please advise!

Like I mentioned, it's not available yet. This will be in a future beta. Perhaps next week. Hubert will notify you when it's available.

Regards

David,

Thank you, and I apologize if I was under the impression that was a direct link to the beta. I will hold for the release, thank you again.

Good morning, I was prompted to install and update version 12.0.16.0 which I did, and that still throws the same error. Still can not ssh to my pfSense.

Hi,
Indeed it's still not included. Hubert will notify you here when it's available.

Regards

Thanks!

I am checking back in, I was told, this week, and we are Thursday, any updates?

We will have another beta later today but this will not be included. We still have stability issues with the updated version of Putty. We have two people working on it. By the way, in the meantime you can use Putty in external mode.

Regards

I appreciate the prompt response, but do we have an ETA on the stability issues and the new roll out?

Hello,

We're currently in our last testing phase for the updated terminal. I'll update you soon on the progress but I'm pretty sure it will be completed this week if we don't encounter any further issues.

Regards,

I can confirm we should have this available for the next version of RDM. If you find any issue with the updated terminal we would appreciate the feedback.

Regards,

Thank you very much. I will look forward for the update when it is rolled out. I will let you know upon testing, thanks!

Just checking back in, you said this week, and no updates were rolled out?

Hi,
Good news. the beta is now available. This is in the version 12.4.1.

We are near feature complete and now we focus on bug fixes for the final release of RDM 12.5

https://remotedesktopmanager.com/Home/Download#beta

Regards

I installed the beta, and now I get this error. I uninstalled RDM, and re-installed it twice, and still get this message.

Hi,
Is it only when you open the ssh shell? The guys will be able to check this Monday.

Regards

Yes, only SSH

I have assigned this to our devs. Thank you for your help. This is a huge upgrade. By the way, do you get the same error in 32bit and 64 bit?

Regards

Hello,

Could you try two things to help us reproduce the issue:
1. Could you try running RDM as administrator if you haven't tried yet and see if the issue still happens
2. Could you export one of your SSH Shell entries without the credentials and send it to us so we can see if it's a particular combination of settings that causes this issue

Regards,

Note, all the issues appear when I ONLY try to ssh to pfSense

1. I tried running it as Administrator, I got an error and RDM stopped working, and program closed.
2. Attached as requested are the imported sessions. CISCO works fine, pfSense does not.

*I wanted to add, that SecureCRT is working fine to ssh to pfSense

Was the provided information helpful?

Hello,

Unfortunately we haven't been able to reproduce the issue, but we're working on it. What makes it tricky is that we don't have access to a pfSense box where we could reproduce the behavior.
It would help us tremendously if we could have access to a machine where the problem happens, but we would understand if you're unable to provide one due to security reasons.

Regards,

Could you also tell us what authentication method you are using (password or private key)? If you are using a private key, could you tell us what type it is (RSA, DSA, etc).

Regards,

I am willing to help you. We can set up a webex session to my pfSense at home so you can see what it is. Also, I can help you set up a pfSense FW in your lab to test. Let me know!

Hello Mina,

I had a discussion with our engineering department and we just need you help to setup a pfsense FW in our lab environment. If you can send us the instructions at support@devolutions, this would be very helpful.

Thank you very much for your help, really appreciated.

Best regards,

I use password.

Please check attached files.

As far as pfSense set up, it may be easier to get a pre-built device https://store.netgate.com/pfSense/systems.aspx if you do not want to spend the time building it. Or you can spare a server in your lap, download the ISO from pfSense (free/Open Source) and follow instructions to set it up, I found this quick step-by-step video for you https://www.youtube.com/watch?v=OfZPOO2nu5g . Also, please feel free to contact me, will be happy to assist, thanks!

Hello,

Good news, we've found what we think is the issue and have made a fix which will be available in the next version of RDM. We would appreciate your feedback once it's available.

Regards,

Great, I will be happy to. When will it be available?

We want to make a new one soon but I can't give you an exact date. In the mean time, if you want to try the change out, you could replace the DLLs for the SSH Shell in your RDM install. I attached a zip file with the required DLL files to this post.

To install the DLL files, you want to put the one in the x86 folder in the following: <RDM Installation Path>\x86
For the one in the x64 folder, you want to put it in: <RDM Installation Path>\x64

In both cases, it should ask to override a single DLL file (DevolutionsTerminalNative.dll). Make sure to backup the respective files just in case.

Regards,

It did not ask to override, there was not .ddl file with that name, however there is DevolutionsTermina.dll => no Native, should I delete DevolutionsTerminal.dll?

It seems that it fixed the issue, now I am able to ssh to my pfsense FW. BTW, I did not delete the old file, please advise if I should, thank you!

SecureCRT imported sessions do not work any more, also, got the same memory error message (the same one I had with pfSense) when accessing CheckPoint Environment.

Could you post the error details. I can't see it clearly in the gif?

Regards

Access Denied, attached is a screenshot

I need the details with the call stack

Would you please send me instructions to follow?

Just click on the Send Error Report and I will get all the details required.

Regards

I did few times, you should have plenty of those, but below are some more!

===============


CISCO,


Win32Exception - Access is denied

at System.Diagnostics.ProcessManager.OpenProcess(Int32 processId, Int32 access, Boolean throwIfExited)
at System.Diagnostics.Process.GetProcessHandle(Int32 access, Boolean throwIfExited)
at System.Diagnostics.Process.OpenProcessHandle(Int32 access)
at System.Diagnostics.Process.get_Handle()
at Devolutions.Utils.SystemUtils.IsWow64()
at Devolutions.RemoteDesktopManager.Managers.InstallationPathManager.EnsureConfigured(String name, Boolean prompt)
at Devolutions.RemoteDesktopManager.Managers.AddOnManager.AddOnServiceProvider.EnsureConfiguredInstallationPath(String applicationName)
at RemoteDesktopManager.AddOn.AddOnServices.EnsureConfiguredInstallationPath(String applicationName)
at RemoteDesktopManager.AddOn.SecureCRTAddOn.SecureCRTAddOn.ConnectExternal(String parameters)
at RemoteDesktopManager.AddOn.SecureCRTAddOn.SecureCRTAddOn.CreateEmbeddedFrame(String parameters, ISession2 session)
at Devolutions.RemoteDesktopManager.Business.Connectors.EmbeddedAddOnConnector.CreateFrame(EmbededConnectionResult connectionResult)
at Devolutions.RemoteDesktopManager.Business.Connectors.EmbeddedConnector.Connect(Connection connection, OpenConnectionMode openConnectionMode)
at Devolutions.RemoteDesktopManager.Managers.ConnectionManager.OpenConnection(Connection connection, OpenConnectionParameter parameter)
at Devolutions.RemoteDesktopManager.Managers.ConnectionManager.OpenConnections(Connection[] connectionList, OpenConnectionParameter parameter)
at Devolutions.RemoteDesktopManager.Managers.ActionManager.c2d3a897d165d9e56a0d53f388986ac51(Connection[] cfabc0254f46d7d8ae5a71db9e5a0b5b5, OpenConnectionMode c602973c05c2f5870e41c508b048b13c5, IConnectionSource c5b7a41272702648f46cf77ee6b3a92cb)
at Devolutions.RemoteDesktopManager.Managers.ActionManager.OpenConnections(Connection[] currentConnections, OpenConnectionMode openConnectionMode, IConnectionSource source, Boolean checkOpenedConnection)
at Devolutions.RemoteDesktopManager.Frames.ConnectionViews.FreBaseConnectionView.OpenConnection(Connection[] currentConnections, OpenConnectionMode openConnectionMode)
at Devolutions.RemoteDesktopManager.Frames.ConnectionViews.FreConnectionTreeListView.cbad026f0443b4db7579b28d004e7ca8d(Boolean ce86b9cea9309620f2c628f54915f70f5)
at Devolutions.RemoteDesktopManager.Frames.ConnectionViews.FreConnectionTreeListView.c22272e122fdcd51692624da742c2f551.c4580d54ab55265c56f154a6afbdb8a29()
at Devolutions.RemoteDesktopManager.Managers.ThreadManager.caa310ce107ed0c993f3d034df6d00336(Object c19f185fd70cefc696ba148af1c4faf54, EventArgs cf1018bb83ec7debd818319fd3cb4844e)
at System.Windows.Forms.Timer.OnTick(EventArgs e)
at System.Windows.Forms.Timer.TimerNativeWindow.WndProc(Message& m)
at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)



=========================



pfSense


Win32Exception - Access is denied

at System.Diagnostics.ProcessManager.OpenProcess(Int32 processId, Int32 access, Boolean throwIfExited)
at System.Diagnostics.Process.GetProcessHandle(Int32 access, Boolean throwIfExited)
at System.Diagnostics.Process.OpenProcessHandle(Int32 access)
at System.Diagnostics.Process.get_Handle()
at Devolutions.Utils.SystemUtils.IsWow64()
at Devolutions.RemoteDesktopManager.Managers.InstallationPathManager.EnsureConfigured(String name, Boolean prompt)
at Devolutions.RemoteDesktopManager.Managers.AddOnManager.AddOnServiceProvider.EnsureConfiguredInstallationPath(String applicationName)
at RemoteDesktopManager.AddOn.AddOnServices.EnsureConfiguredInstallationPath(String applicationName)
at RemoteDesktopManager.AddOn.SecureCRTAddOn.SecureCRTAddOn.ConnectExternal(String parameters)
at RemoteDesktopManager.AddOn.SecureCRTAddOn.SecureCRTAddOn.CreateEmbeddedFrame(String parameters, ISession2 session)
at Devolutions.RemoteDesktopManager.Business.Connectors.EmbeddedAddOnConnector.CreateFrame(EmbededConnectionResult connectionResult)
at Devolutions.RemoteDesktopManager.Business.Connectors.EmbeddedConnector.Connect(Connection connection, OpenConnectionMode openConnectionMode)
at Devolutions.RemoteDesktopManager.Managers.ConnectionManager.OpenConnection(Connection connection, OpenConnectionParameter parameter)
at Devolutions.RemoteDesktopManager.Managers.ConnectionManager.OpenConnections(Connection[] connectionList, OpenConnectionParameter parameter)
at Devolutions.RemoteDesktopManager.Managers.ActionManager.c2d3a897d165d9e56a0d53f388986ac51(Connection[] cfabc0254f46d7d8ae5a71db9e5a0b5b5, OpenConnectionMode c602973c05c2f5870e41c508b048b13c5, IConnectionSource c5b7a41272702648f46cf77ee6b3a92cb)
at Devolutions.RemoteDesktopManager.Managers.ActionManager.OpenConnections(Connection[] currentConnections, OpenConnectionMode openConnectionMode, IConnectionSource source, Boolean checkOpenedConnection)
at Devolutions.RemoteDesktopManager.Frames.ConnectionViews.FreBaseConnectionView.OpenConnection(Connection[] currentConnections, OpenConnectionMode openConnectionMode)
at Devolutions.RemoteDesktopManager.Frames.ConnectionViews.FreConnectionTreeListView.cbad026f0443b4db7579b28d004e7ca8d(Boolean ce86b9cea9309620f2c628f54915f70f5)
at Devolutions.RemoteDesktopManager.Frames.ConnectionViews.FreConnectionTreeListView.c22272e122fdcd51692624da742c2f551.c4580d54ab55265c56f154a6afbdb8a29()
at Devolutions.RemoteDesktopManager.Managers.ThreadManager.caa310ce107ed0c993f3d034df6d00336(Object c19f185fd70cefc696ba148af1c4faf54, EventArgs cf1018bb83ec7debd818319fd3cb4844e)
at System.Windows.Forms.Timer.OnTick(EventArgs e)
at System.Windows.Forms.Timer.TimerNativeWindow.WndProc(Message& m)
at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)

Thank you very much. We have fix coming for this in the next version. I think you could try to do Run As Administrator as a workaround.

Regards

How about the memory read error when SSH to CheckPoint?

You could check the next version if it fixes the issue at the same time. I suspect it could be related.

Regards

Run it as Administrator solved the issue, I do have another question about it. When I open a session from the imported SecureCRT sessions, and when I try to open another session from the imported SecureCRT sessions, it flashes and does not open, how can I solve that issue? Thank you!

Were you able to tell what causes this not to work (referring to my last post)

Hello,

Unfortunately we weren't able to reproduce the issue using SecureCRT 7.2. What version of SecureCRT are you using?

It might be an option you have to disable in SecureCRT itself where it doesn't allow for multiple executables to run side by side. If so, the fix is to disable that option as RDM can't work around it.

Regards,

SecureCRT Version 8.1.1 (x64 build 1319) - Official Release - February 28, 2017

I am trying to find that setting you referred to, and can not find, what am I looking for?

We're currently working on getting a license for Secure CRT 8 so we can test using the same version as you are. There doesn't seem to be an option like this in Secure CRT 7 so we can't currently help. We should be able to test with your version early next week. Sorry for the inconvenient.

Regards,

Hi,

Probably this is off topic, but feel free to create a new issue if you find it more appropriate.

When using "Use SSH authentication agent" set to true if you leave the username empty in the "General" tab it will crash RDM, with the latest Beta 12.4.3.0, when you attempt to connect to the server.

This happens on any of my linux servers, ubuntu pfsense, etc...

I'm no sure this issue existed previously because I'm reevaluating RDM again after you corrected the pfsense issue that I reported.

Regards,

Mario Gomes

update:

It happens also when using when using "Use SSH authentication agent" set to false, and a file key is being used.

Regards,

Mário Gomes

Thank you for the information, we can reproduce it on our end and we're working on a fix.

Regards,

We have identified the issue and we should have a fix out in the next version of RDM.

Regards,

Hi Mina,

I tested it with Secure CRT 8.1.1 (the same version as you) and I didn't have any problem. Could you Export the configuration of SecureCRT and it to us by email at support@devolutions.net please.

To export it, open Secure CRT --> Tools --> Export Settings and select only Global Options. We do not need the Sessions.

Best regards,