04-30-2024 12:42 PM
Hi.
I try to open web interface for ISR 1100 cisco router but it is showing incomplete. I don't have the configuration rebon and all I have in navigation menu is Dashboard and Monitoring.
I shared the screenshot.
Regards,
Aria
04-30-2024 11:46 PM
check the configuration - make sure the admin user priv 15 with http local auth ?
check the video :
https://www.youtube.com/watch?v=PLuOk3BogAo
how is your vty line configuration
!transport-map type persistent webui WebUI server secure-server username c!sco privilege 15 password 0 c!sco !ip http server ip http secure-server ip http authentication local ! transport type persistent webui input WebUI
05-01-2024 02:08 AM
Thanks.
I applied your commands in CLI, but the transport-map didn't work.
I got this error:
ERROR: Can not have both a user password and a user secret. Please choose one or the other." Error executing command: CLI command error
Then I used this:
username <my username > privilege 15 secret 0 <my password>
!ip http server
ip http secure-server
ip http authentication local
and after typed end and saved the changes but again I couldn't use the transport-map commands you mentioned.
When I connect the LAN cable to the port 0/0/0 that I configured, I got the vty 0 in the Putty.
but again I don't have the configuration menu in the navigation menu for web interface.
Do you have any suggestions?
Regards,
Aria
05-01-2024 04:00 AM
can you post show version and show run output
05-01-2024 04:06 AM
sure. Here it is:
Router#show version
Cisco IOS XE Software, Version 17.12.03
Cisco IOS Software [Dublin], isr1100be Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 17.12.3, RELEASE SOFTWARE (fc7)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2024 by Cisco Systems, Inc.
Compiled Wed 20-Mar-24 15:50 by mcpre
Cisco IOS-XE software, Copyright (c) 2005-2024 by cisco Systems, Inc.
All rights reserved. Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0. The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY. You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0. For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.
ROM: 17.7(1r)
Router uptime is 17 hours, 18 minutes
Uptime for this control processor is 17 hours, 19 minutes
System returned to ROM by PowerOn
System image file is "bootflash:isr1100be-universalk9.17.12.03.SPA.bin"
Last reload reason: PowerOn
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
Technology Package License Information:
Controller-managed
The current throughput level is unthrottled
Smart Licensing Status: Smart Licensing Using Policy
cisco ISR1100-4G (1RU) processor with 1310911K/6147K bytes of memory.
Processor board ID FGL2746L99Y
Router operating mode: Controller-Managed
4 Gigabit Ethernet interfaces
32768K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
5949439K bytes of flash memory at bootflash:.
1945584K bytes of USB flash at usb0:.
Configuration register is 0x9821
Router#show run
Building configuration...
Current configuration : 3130 bytes
!
! Last configuration change at 11:01:08 UTC Wed May 1 2024 by admin
!
version 17.12
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
platform qfp utilization monitor load 80
platform punt-keepalive disable-kernel-core
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
vrf definition 65528
description Internal VRF
!
address-family ipv4
exit-address-family
!
vrf definition 65529
description Speedtest VRF
!
address-family ipv4
exit-address-family
!
aaa new-model
!
!
aaa authentication login default local
aaa authentication enable default enable
aaa authorization console
aaa authorization exec default local
!
!
aaa session-id common
!
!
!
!
!
!
!
no ip dhcp use class
!
ip dhcp pool WEBUIPool
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
!
!
!
login on-success log
!
!
!
!
!
fhrp version vrrp v3
ipv6 unicast-routing
ipv6 rip vrf-mode enable
!
!
subscriber templating
!
!
!
!
!
vtp version 1
!
multilink bundle-name authenticated
!
!
!
password encryption aes
!
!
crypto pki trustpoint TP-self-signed-303572524
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-303572524
revocation-check none
rsakeypair TP-self-signed-303572524
hash sha256
!
crypto pki trustpoint SLA-TrustPoint
enrollment pkcs12
revocation-check crl
hash sha256
!
!
crypto pki certificate chain TP-self-signed-303572524
crypto pki certificate chain SLA-TrustPoint
!
!
diagnostic bootup level minimal
!
license udi pid ISR1100-4G sn FGL2746L99Y
license accept end user agreement
memory free low-watermark processor 61459
!
spanning-tree extend system-id
!
!
!
username amin privilege 15 secret 9 $9$U09ZHDg.d8t8DE$8m1sCP7DknnlvPUn8R0YrUhrr.Zv9eKRhJrwa9ihGDk
username admin privilege 15 password 6 FBRIKNWPJ^SeeFBX]WPGWB^]MWEAAB
!
redundancy
mode none
!
!
!
no crypto ikev2 diagnose error
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback65528
vrf forwarding 65528
ip address 192.168.1.1 255.255.255.255
!
interface Loopback65529
vrf forwarding 65529
no ip address
!
interface GigabitEthernet0/0/0
ip address 192.168.1.1 255.255.255.0
negotiation auto
!
interface GigabitEthernet0/0/1
ip address 131.227.157.15 255.255.255.0
negotiation auto
!
interface GigabitEthernet0/0/2
no ip address
negotiation auto
!
interface GigabitEthernet0/0/3
no ip address
negotiation auto
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip nat settings central-policy
ip nat settings gatekeeper-size 1024
ip nat route vrf 65528 0.0.0.0 0.0.0.0 global
no ip nat service all-algs
no ip ssh bulk-mode
ip scp server enable
!
!
!
!
!
!
!
!
control-plane
!
!
!
line con 0
stopbits 1
speed 115200
line aux 0
line vty 0 4
password 6 ^KTZJZYFiNdHeI]^Fi^OiDF_[ZVAAB
transport input none
line vty 5 30
password 6 ^KTZJZYFiNdHeI]^Fi^OiDF_[ZVAAB
transport input none
line vty 31 80
transport input none
!
no network-clock revertive
!
!
!
!
!
!
telemetry receiver protocol confd-rfc5277
host ip-address 0.0.0.0 0
protocol rfc5277
netconf-yang
netconf-yang feature candidate-datastore
end
Regards,
Aria
05-01-2024 05:08 AM - edited 05-01-2024 05:08 AM
how are you access GUI
Also try adding VTYline :
ine vty 0 4
transport input all
when you launch the GUI, did the router asking you enter username and password ?
05-01-2024 06:02 AM
Hi again.
I applied line vty 0 4
transport input all
but it didn't fix the problem.
I use https://192.168.1.1 for web interface and use login and password
but again I don't have access to the Configuration menu and I inly have Dashboard and Monitoring menus in the Navigation menu.
Regards,
Aria
05-01-2024 06:51 AM - edited 05-01-2024 06:56 AM
I use https://192.168.1.1 for web interface and use login and password
have you tried http://routerip (try different browsers ?) login and password (admin username right ?)
what options you get when you click this ICON :
not related to this issue, some how your conf reg - Configuration register is 0x9821 (never seen before)
05-01-2024 07:28 AM
that option you highlighted activate the cellular connection.
I am just really confused why I don't have the full navigation menu in the web interface.
Regards,
Aria
05-01-2024 08:32 AM
I am just really confused why I don't have the full navigation menu in the web interface.
This is bizzard - just tested one of my test router - i can able to get the configuration on GUI - not sure there may be small bit we missing. (most cases with admin with priv 15, should have access)
even you have same issue http://routerip ? (not https?) - how about different browsers.
until this was bug on the latest code you using 17.12.x
below my router test config :
show run all | inc ip http
ip http server
ip http port 80
ip http authentication local
ip http secure-server
ip http secure-port 443
ip http secure-active-session-modules all
ip http max-connections 50
ip http timeout-policy idle 180 life 180 requests 25
ip http active-session-modules all
ip http client cache memory pool 100
ip http client cache memory file 2
ip http client cache ager interval 5
ip http client connection timeout 10
ip http client connection retry 1
ip http client connection idle timeout 30
ip http client response timeout 30
05-01-2024 08:40 AM
Yes. I tried different browsers and with http: also. Still the same problem.
I used these CLI:
Router(config)# ip dhcp pool WEBUIPool
Router(dhcp-config)# network 192.168.1.0 255.255.255.0
Router(dhcp-config)# default-router 192.168.1.1
Router(dhcp-config)# username <my username> privilege 15 secret <my password>
Router(config)# interface GigabitEthernet 0/0/0
Router(config-if)# ip address 192.168.1.1 255.255.255.0
Router(config-if)# end
Uncommitted changes found, commit them? [yes/no/CANCEL] yes
Commit complete.
And then I did that:
Router(config)# username <my admin> privilege 15 secret <my password>
Router(config)# ip http server
Router(config)# ip http secure-server
Router(config)# ip http authentication local
Router(config)# end
Uncommitted changes found, commit them? [yes/no/CANCEL] yes
Commit complete.
after I did
#Router(config) vty line 0 4
#Router(config) transport input all
Is it possible for you to have a quick video chat using e.g. Google meet?
Regards,
Aria
05-01-2024 09:00 AM
if this is not production and new device - reset to facoty and test as below document step by step :
i never had any GUI issue, but check one of the suggestion :
Please configure 30 lines for line vty in order to resolve this issue:
line vty 0 30
05-01-2024 09:10 AM
Hi
I did that.
Router(config)# line vty 0 30
Router(config-line)# end
Uncommitted changes found, commit them? [yes/no/CANCEL] yes
Commit complete.
Is it enough? or should I do something after?
Regards,
Aria
05-01-2024 11:34 AM
you can try adding - transport input all
05-02-2024 02:52 AM
Thanks. I did that. It didn't help.
The command write erase doesn't work. Do you have any command related to factory reset?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide