12-16-2019 10:03 AM
Hello,
I am facing a frustrating problem where my 4500-x switch will not authenticate to local credentials via an ssh session. This is a problem I inherited from someone who decided to simply "not tell anyone about it". :)
Using putty, I'm able to establish an ssh session to the switch and am prompted for a username. After entering the username, the banner message displays, followed immediately by "TACACS+ authentication requiredUsing keyboard-interactive authentication", then a password prompt.
The logins always fail, even though the credentials I'm entering match what.s in the username statement.
This is the configuration as I found it:
username admin password 0 ******
aaa new-model
line vty 0 4
password ******
length 0
transport input ssh
line vty 5 15
password ******l
transport input ssh
!
I've tried all the aaa commands I can think of (aaa authentication login default local, etc.) and none of those helped. I tried removing "aaa new-model" and adding "login local" to the vty interfaces. I've also tried regenerating the ssh key, all with no luck.
Any ideas?
Solved! Go to Solution.
12-16-2019 10:46 AM
12-16-2019 10:46 AM
12-16-2019 11:02 AM
Thanks, tried that, still getting "Access Denied" from my ssh session.
12-16-2019 11:10 AM
12-16-2019 11:20 AM - edited 12-16-2019 11:24 AM
line vty 0 4
privilege level 15
login local
length 0
transport input ssh
line vty 5 15
privilege level 15
login local
transport input ssh
Same result, "Access Denied".
Is the "TACACS+ authentication required" message I'm getting when I'm trying to log in significant? There is (should not be) no TACACS+ set up for this switch.
12-16-2019 12:16 PM
Can you post full configuration before i can suspect something wrong in another level of config.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide