Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
27974
Views
10
Helpful
7
Replies

Maglev cli

Go to solution
KevinR99
Level 3
Level 3

‎11-05-2022 06:24 AM - edited ‎11-05-2022 06:24 AM

Hi

Has anything changed with DNAC and maglev commands?  I’ve not logged into the cli on our DNAC for some time and we have had several updates since.  We are at the latest version currently.  Yesterday I had an issue and wanted to run a tcpdump.  So I looked at my notes and got the commands

sudo tcpdump ……..

When I tried this it was an unrecognised command.  I’m certain I’ve run tcpdump before from the maglev cli.

Thanks, Kev

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
willwetherman
Spotlight
Spotlight

‎11-07-2022 12:38 AM - edited ‎11-07-2022 01:14 AM

This will be caused by the restricted shell feature that is enabled by default in the later versions of DNA Center 

When you SSH to maglev, you need to enter command '_shell' to enter the bash shell to be able to run commands such as tcpdump.

You can disable and re-enable the restricted shell feature if required

To disable

_shell -c 'sudo magctl ssh shell bash'

 

To re-enable

_shell -c 'sudo magctl ssh shell magshell'

 

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/2-3-3/admin_guide/b_cisco_dna_center_admin_guide_2_3_3/b_cisco_dna_center_admin_guide_2_3_3_chapter_010.html#Cisco_Task_in_List_GUI.dita_54088... 

View solution in original post

7 Replies 7

Go to solution
Mark Elsen
Hall of Fame
Hall of Fame

‎11-05-2022 08:41 AM

 

 - If possible search for the command with Linux find , it may not be included in the PATH of the current user.

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

Go to solution
willwetherman
Spotlight
Spotlight

‎11-07-2022 12:38 AM - edited ‎11-07-2022 01:14 AM

This will be caused by the restricted shell feature that is enabled by default in the later versions of DNA Center 

When you SSH to maglev, you need to enter command '_shell' to enter the bash shell to be able to run commands such as tcpdump.

You can disable and re-enable the restricted shell feature if required

To disable

_shell -c 'sudo magctl ssh shell bash'

 

To re-enable

_shell -c 'sudo magctl ssh shell magshell'

 

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/2-3-3/admin_guide/b_cisco_dna_center_admin_guide_2_3_3/b_cisco_dna_center_admin_guide_2_3_3_chapter_010.html#Cisco_Task_in_List_GUI.dita_54088... 

Go to solution
Martin Grimm
Level 1
Level 1
In response to willwetherman

‎07-17-2023 02:51 AM

I was a little fast and typed only:
_shell

Now DNAC want to know the Challenge / Response Token. How can a clear that state?

$ _shell -c 'sudo magctl ssh shell magshell' 

A challenge is already in progress with state CT_STATE_RESP_WAIT
VunL3QAAAQUBAAQAAA.....
Please provide the consent token via [_shell -v] command for bash shell-access



 Regards,

Martin

Go to solution
PabMar
Cisco Employee
Cisco Employee
In response to Martin Grimm

‎07-17-2023 06:54 AM

Martin, you need to get onto TAC for a token.

Check the admin guide.

PabMar_0-1689602079744.png

 

Hope that helps.

Regards.

Go to solution
Cedric Metzger
Level 1
Level 1
In response to Martin Grimm

‎08-15-2023 08:27 AM

Hey @Martin Grimm , i stumpled about the same issue. Were you able to solve it?

0 Helpful

Go to solution
Martin Grimm
Level 1
Level 1
In response to Cedric Metzger

‎08-21-2023 01:00 AM

Hi Cedric, yes you need a TAC Case, for that.

Go to solution
KevinR99
Level 3
Level 3

‎11-09-2022 07:15 AM

Thank you.  That worked. 

0 Helpful
Customers Also Viewed These Support Documents