01-01-2025 08:43 PM
Hello guys,
I currently face the issue can't donwload the switch configuratio from solarwinds. And here is the error message when I click downlaod running config " Connection Refused by Ip: x.x.x.x. and when I look at the logs on the switch, it's show the error like bellow:
Dec 9 14:48:51: %SSH-3-NO_MATCH: No matching mac found: client hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-sha1-96 server hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com
Dec 9 14:48:51: %SSH-5-SSH2_SESSION: SSH2 Session request from x.x.x.x (tty = 1) using crypto cipher '', hmac '' Failed
Dec 9 14:48:51: %SSH-5-SSH2_CLOSE: SSH2 Session from x.x.x.x (tty = 1) for user '' using crypto cipher '', hmac '' closed
what is the solution to fix this issue?
01-01-2025 10:54 PM - edited 01-01-2025 10:59 PM
It means solarwinds tried SSH to switch to get running config, however during the SSH handshake the client (Solarwinds) proposed using specific cipher suite for e.g. HMAC-SHA2-256 MAC (Message Authentication Code) algorithm, but the SSH server (switch) did not have this algorithm configured or enabled as a supported MAC method. As a result, the server could not negotiate a matching MAC algorithm with the client, and the connection failed.
you can try using better cipher suite on the switch using commands in this blog and see if it works, if its old switch then there is nothing you can do
feel free to share output of "show ip ssh" so we can see what cipher suite you have configured if you can.
01-01-2025 10:56 PM
- Check this thread : https://thwack.solarwinds.com/products/network-configuration-manager-ncm/f/forum/95869/unable-to-backup-the-new-cisco-switches-in-our-networks
M.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide