Errror download Node'configuration from Solarwinds

damjorn2023 · ‎01-01-2025

Hello guys,

I currently face the issue can't donwload the switch configuratio from solarwinds. And here is the error message when I click downlaod running config " Connection Refused by Ip: x.x.x.x. and when I look at the logs on the switch, it's show the error like bellow:

Dec 9 14:48:51: %SSH-3-NO_MATCH: No matching mac found: client hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-sha1-96 server hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com
Dec 9 14:48:51: %SSH-5-SSH2_SESSION: SSH2 Session request from x.x.x.x (tty = 1) using crypto cipher '', hmac '' Failed
Dec 9 14:48:51: %SSH-5-SSH2_CLOSE: SSH2 Session from x.x.x.x (tty = 1) for user '' using crypto cipher '', hmac '' closed

what is the solution to fix this issue?

ammahend · ‎01-01-2025

It means solarwinds tried SSH to switch to get running config, however during the SSH handshake the client (Solarwinds) proposed using specific cipher suite for e.g. HMAC-SHA2-256 MAC (Message Authentication Code) algorithm, but the SSH server (switch) did not have this algorithm configured or enabled as a supported MAC method. As a result, the server could not negotiate a matching MAC algorithm with the client, and the connection failed.
you can try using better cipher suite on the switch using commands in this blog and see if it works, if its old switch then there is nothing you can do

feel free to share output of "show ip ssh" so we can see what cipher suite you have configured if you can.

-hope this helps-

marce1000 · ‎01-01-2025

- Check this thread : https://thwack.solarwinds.com/products/network-configuration-manager-ncm/f/forum/95869/unable-to-backup-the-new-cisco-switches-in-our-networks

M.

-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '