I think it was in the accounting reports where the commands given in the session where authorized.

Unfortunately we no longer use ACS so I can't check how it was done.

 - Ok, below is a checklist for items to execute and or verify ; with subsequent results and or info expected :

   1) When re-entering the device in Prime as discussed earlier , you did do verify credentials with positive result - right ?

   2) During those logon attempts from Prime is there any particular info regarding authentication attempts when you issue show logging (on the switch).

   3) Which protocol is used for accessing the switch (besides snmp); telnet or SSH ? For either way try flipping the used-method and check whether the problem persists. Again do this by removing and re-entering the device from prime. WITH verify credentials being used first (positive result expected)

   4) Last but not least : if the problem still persists ; try configuring a local account on the switch (not Tacacs based). And check whether this helps. Again  you do this by removing the device from prime first and re-entering it, also issue verifying credentials first(!). You also try this by using both protocols (telnet and or SSH).

   5) Make sure you are not using ACL's on the switch preventing telnet or SSH access from Prime.

   If things are  still not working and you feel inclined to reply ; an answer on all check-requests is expected.

'As my ole night-owl always used to say (between 2-oeHoes) - God bless his soul; I can sometimes can be a real burden...:-) (!)

M.

I read all the previous replies and I want to get a baseline on exactly what your issue is, I think you have stated it, so forget me if I am going back to basic.

1. You are concern with CPI logging into your switch every 10 minutes?

2. We have already validated that you have no system or user jobs running every 10 minutes.

3.  The device(s) in questions are fully managed by CPI?

Hi Winston

1. You are concern with CPI logging into your switch every 10 minutes?

This is correct although the frequency is more like every couple of minutes.

2. We have already validated that you have no system or user jobs running every 10 minutes.

This is not the case - I believe there maybe a job somewhere within PI kicking these logins off but I just cant seem to find it or where it would be located.

3.  The device(s) in questions are fully managed by CPI?

Yes the device is fully managed.

Thanks

Richard

1) When re-entering the device in Prime as discussed earlier , you did do verify credentials with positive result - right ?

No I get the below message but I get this for all switches in our network as we have HTTP access disable for all network device.

"Check whether the HTTP/HTTPS credentials are Valid."

   2) During those logon attempts from Prime is there any particular info regarding authentication attempts when you issue show logging (on the switch).

Nothing in the switch logs

   3) Which protocol is used for accessing the switch (besides snmp); telnet or SSH ? For either way try flipping the used-method and check whether the problem persists. Again do this by removing and re-entering the device from prime. WITH verify credentials being used first (positive result expected)

SNMP and telnet

   4) Last but not least : if the problem still persists ; try configuring a local account on the switch (not Tacacs based). And check whether this helps. Again  you do this by removing the device from prime first and re-entering it, also issue verifying credentials first(!). You also try this by using both protocols (telnet and or SSH).

   5) Make sure you are not using ACL's on the switch preventing telnet or SSH access from Prime.

No ACLs on switch access to switch is fine

 - Actions on 3) and 4) are still pending , tx.

 M.

Hi Marce

Just completed both actions 3 and 4 - problem still persists.

Thanks

Richard