Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2882
Views
0
Helpful
5
Replies

Cisco Prime Alarms

aidei0001
Level 1
Level 1

‎08-03-2017 04:39 PM

Hi, 

I keep getting this "Device 'IP Address' Authentication failed for request from
'IP Address" in Cisco Prime. Please has any one had this issue before. Please advise on how you resolved it?

Many thanks in advance

3 people had this problem
Labels:
0 Helpful
5 Replies 5

marce1000
VIP
VIP

‎08-04-2017 12:37 AM

 - Was the device entered with correct credentials in Prime; remove the device from Prime and re-enter it but issue 'verify credentials' first (e.g.).

M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Harrie Hendriks
Level 1
Level 1

‎06-02-2020 05:55 AM

I have the same problem:

 

Device '10.10.X.X'. Authentication failed for request from '52.73.169.169'.
 
The Management address of te switch is a private range 10.10.X.X
The address 52.73.169.169 is an external adres and was found 3622 times in de AbuseIPdb.
The VTY and the SNMP port are protected with an acl, what is ending eith a deny any any log
The acl give not a hit, but how can the hacker be ask for authentication?
 
 
0 Helpful

marce1000
VIP
VIP
In response to Harrie Hendriks

‎06-02-2020 09:26 AM

 

 - Depends on how the ACL is setup, does it for instance block the unwanted private addresses only ? You may for instance try to replay what the hacker is doing from your home internet connection and check if that works too or not. If needed you may need to enforce your perimeter firewall policy.

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Harrie Hendriks
Level 1
Level 1
In response to marce1000

‎06-03-2020 01:27 AM

The ACL are as followed.

access-list 99 permit X.X.1.0 0.0.0.255

access-list 99 permit 192.168.1.0 0.0.0.255

access-list 99 deny any log

 

snmp-server community rw-name rw 99

snmp-server community ro-name rw 99

 

line vty 0 4   |  line vty 5 15

  access-class 99 in

 

Is there a third method for 'connecting' the switch.

0 Helpful

marce1000
VIP
VIP
In response to Harrie Hendriks

‎06-03-2020 03:43 AM

 

                      > Is there a third method for 'connecting' the switch.

 Can't confirm or deny - you could let an nmap scan let loose on it (e.g.). I also advise to disable http and https server/services

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card