Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2014
Views
0
Helpful
4
Replies

SSH authentication failure CiscoWorks LMS 4

Go to solution
Colin Higgins
Level 2
Level 2

‎10-25-2012 09:21 AM

I am trying to get CiscoWorks LMS 4.0 to connect to my routers in order to back up configurations, but I am getting SSH authentication failures reported in the router logs (and archiving fails).

The credentials LMS is using is a username and password with priviledge 15: the account is established in TACACS+. I can log into the devices directly with this user account.

However, I cannot TFTP from the routers to the LMS either (I get a permission denied message in the router).

LMS did manage to fetch some configs, but 90% of my devices are having this issue.

Any advice would be great

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Michel Hegeraat
Level 7
Level 7

‎10-28-2012 08:14 AM

Can you login on some of the failing devices from the server itself, rather than from your pc? You can safely install putty or other ssh clients on the server.

Have you tried to validate the credentails in the DCR? 

It is 'normal' to get a permision denied when you do a tftp to LMS. The filename must exist in the CSCOpx\tftpboot\ directory with permission to write for casuser.

Cheers,

Michel

View solution in original post

0 Helpful

Go to solution
tira li
Level 1
Level 1
In response to Colin Higgins

‎11-07-2012 08:33 PM

Hi Colin,

     How do you fix it?! My client's 90% devices cannot get the configuration by lms, just like your situation.

Thanks

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Michel Hegeraat
Level 7
Level 7

‎10-28-2012 08:14 AM

Can you login on some of the failing devices from the server itself, rather than from your pc? You can safely install putty or other ssh clients on the server.

Have you tried to validate the credentails in the DCR? 

It is 'normal' to get a permision denied when you do a tftp to LMS. The filename must exist in the CSCOpx\tftpboot\ directory with permission to write for casuser.

Cheers,

Michel

0 Helpful

Go to solution
Colin Higgins
Level 2
Level 2
In response to Michel Hegeraat

‎11-07-2012 06:30 AM

It eventually corrected itself--thanks

0 Helpful

Go to solution
tira li
Level 1
Level 1
In response to Colin Higgins

‎11-07-2012 08:33 PM

Hi Colin,

     How do you fix it?! My client's 90% devices cannot get the configuration by lms, just like your situation.

Thanks

0 Helpful

Go to solution
Colin Higgins
Level 2
Level 2
In response to tira li

‎11-09-2012 07:23 AM

For some reason the intiial credential set did not take--the system was trying to use default settings. I went back in and set everything back up for SSH.

It is fetching 90% of the configs--I still have some issues with some of them. I cannot directly TFTP from a device to CiscoWorks, but it seems to be able to fetch the configs automatically.

tira: are you using TACACS+ for authentication?

0 Helpful
Customers Also Viewed These Support Documents