RHEL9: Cannot connect to legacy systems, getting error message "no matching host key type found. Their offer: ssh-rsa"

Solution Verified - Updated -

Issue

  • Trying to connect from a RHEL9 system in FIPS mode or even with DEFAULT crypto policy to a legacy system (RHEL6, HP iLO, etc.), the following error message is displayed

    (RHEL9) $ ssh <legacy-system>
Unable to negotiate with IPAddr port 22: no matching host key type found. Their offer: ssh-rsa

  • Trying to connect from a RHEL8 system works fine

Environment

  • Red Hat Enterprise Linux 9
    • Crypto Policies

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content