The access issue caused by the previous fix will be addressed with CA PAM 2.8.3 release.
When SSH access failed due to the DH key Size, PAM will retry with shorter length key size.
For newer PAM releases this problem still may be observed, e.g. when a shorter key length is not available/accepted. The problem typically is resolved by updating the SSH server on the target device, e.g. to a recent OpenSSL version.