Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
718
Views
0
Helpful
1
Replies

AAA authencation

patnaik1010
Level 1
Level 1

‎08-12-2011 08:40 AM - edited ‎03-10-2019 06:18 PM

Hi

I have a web srver behind ASA fiewall, server team s managing this sever throuh ssh access. I wanted user authentication to be enable when ssh traffic passes through ASA. I cofigured user authentication but web server team are not able to connect through ssh rather they are getting following error message as mentioned below.

ssh_exchange_identification: Connection closed by remote host

ASA configuration

access-list aclout  permit tcp host 188.40.67.66 host 192.168.2.25 eq ssh
access-list aclout  permit tcp host 188.40.67.66 host 192.168.2.25 eq 7071
access-list aclout  permit tcp host 188.40.67.66 host 192.168.2.25 eq 8273
access-list aclout  permit tcp host 188.40.67.66 host 192.168.2.25 eq 5111


aaa authention include ssh outside 192.168.2.25 255.255.255.255 188.40.67.66 255.255.255.255

when i am removing aaa authenticatio command above its working fine.

Please go through the configuration, correct me if any mistakes.

Patnaik

Labels:
0 Helpful
1 Reply 1

Tarik Admani
VIP Alumni
VIP Alumni

‎08-31-2011 07:04 PM

Srinivas,

Here is a guide that will help:

http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/access_fwaaa.html#wp1150511

Thanks,

Tarik

0 Helpful
Customers Also Viewed These Support Documents