Sftp/ssh to upgraded Solaris 11.3 system gives error: Disconnecting: Protocol error: no matching DH grp found (Doc ID 2254081.1)

Last updated on AUGUST 29, 2017

Applies to:

Solaris Operating System - Version 11.3 and later
Information in this document applies to any platform.

Symptoms

 When a SSH client tries to sftp/ssh to a server which was upgraded to Solaris 11.3 , it fails with the above error.

Running sshd debug shows error as below:

     WARNING: no suitable primes in /etc/ssh/primes
     Disconnecting: Protocol error: no matching DH grp found

That is the error the client sees in initial logs of their application which does sftp/ssh.

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms