Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5840
Views
13
Helpful
16
Replies

Only one user can log into a switch via Telnet

Go to solution
gordonderick
Level 1
Level 1

‎04-09-2013 09:12 AM - edited ‎03-04-2019 07:32 PM

                   The switch will allow only one user to connect to it at any given time. Below are the configs and oputputs.

ol-dr-6509-01#show users

    Line       User       Host(s)              Idle       Location

*  1 vty 0     gkeo   idle                 00:00:00 192.168.3.130

   2 vty 1                idle                    23w6d  

   3 vty 2                idle                    37w4d  

   4 vty 3                idle                    37w4d  

   5 vty 4                idle                    never  

   6 vty 5                idle                    never  

   7 vty 6                idle                    never  

   8 vty 7                idle                    never  

   9 vty 8                idle                    never  

  10 vty 9                idle                    never  

  11 vty 10               idle                    never  

  12 vty 11               idle                    never  

  13 vty 12               idle                    never  

  14 vty 13               idle                    never  

  15 vty 14               idle                    never  

  16 vty 15               idle                    never  

  Interface      User        Mode                     Idle     Peer Address

net_mgmt>>192.168.1.2

Trying 192.168.1.2 ...

% Connection refused by remote host

-----

!

aaa new-model

!

!

aaa group server tacacs+ site-tacacs

server 192.168.3.4

server-private 192.168.3.4 key 7 xxxxxxx

ip vrf forwarding vpn_mgmt

ip tacacs source-interface Vlan23

!

aaa authentication login default group site-tacacs local

aaa authentication enable default group site-tacacsenable none

aaa authorization exec default group site-tacacs local if-authenticated

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting connection default start-stop group tacacs+

!

!

!

line vty 0 4

session-timeout 1

exec-timeout 30 0

password 7 xxxxxxx

line vty 5 15

session-timeout 1

exec-timeout 30 0

password 7 xxxxxx

!

Labels:
0 Helpful
16 Replies 16

Go to solution
turfsniffer0
Level 1
Level 1
In response to Steve Fuller

‎04-10-2013 08:27 AM

well spotted Steve - didn't notice the ports!

Have no idea to be honest and a reboot is probably out of the question (it might not sort the problem either).

It would do no harm sticking on vty ACL's to just permit telnet and/or ssh on the vty's. But i think you want want to open a TAC case to see if there's a bug out there that might be causing issue (sounds a bit like CSCsc70644) - especially because your IOS is fairly old. 

0 Helpful

Go to solution
gordonderick
Level 1
Level 1
In response to turfsniffer0

‎04-10-2013 09:05 AM

Thanks very much Steve for your help. I tried looking up for possible bugs earlier today but could not find it for some reason. Appreciate your assistance in nailing this.

Thanks turfsniffer for your help as well :-)

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card