Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
159
Views
0
Helpful
1
Replies

Unable to SSH from one switch to another

Ranjita
Level 1
Level 1

‎06-12-2024 01:59 AM

Hi all,

I have two RADIUS Servers,all switches are authenticated and authorized via the radius. I have an ACL tied to the vty lines to limit access to the switch. While DC1 is ON I can ssh from one switch to another.

When I turn OFF/disconnect DC2 and try to ssh,I can see authorization is successful but I am unable to access the switch.

Jun 12 09:50:25.001 UTC: %SEC_LOGIN-5-LOGIN_SUCCESS: Login Success [user: XXX] [Source: 10.169.29.193] [localport: 22] at 09:50:25 UTC Wed Jun 12 2024

After this message I get back into the Username prompt of the switch I am locally connected to.

sh run aaa
!
aaa authentication login default group UR-RADIUS local
aaa authentication enable default enable
aaa authorization exec default group UR-RADIUS if-authenticated
username Admin privilege 15 secret 9 $9$BLS0qXOCIaThWE$ymmWRi0bY5X3Fp50oP/HA2qNxxhyx2yKOyTYBRROqvk
!
!
!
aaa group server radius UR-RADIUS
server-private 10.169.29.5 key 7 111A0C071A1319050A2F1F2B3A2330261C25170F0E5957
server-private 10.169.29.6 key 7 0832594C0418171E1C0E380B383B212C3C17231F08190D
!
!
!
!
aaa new-model
aaa session-id common
!
!
ip radius source-interface Vlan403

 

Can anyone help me with this?

 

 

0 Helpful
1 Reply 1

MHM Cisco World
VIP
VIP

‎06-12-2024 06:14 AM

show aaa server  <<- share this 

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card