Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7949
Views
9
Helpful
8
Replies

SSH Access for Cisco Catalyst Switch

kfcanete
Frequent Visitor
Frequent Visitor

‎03-03-2023 09:42 AM

Hi,

I was just wondering if we onboarded our cisco catalyst switches to Meraki dashboard are we still able to access it thru SSH? Will it be still authenticate thru our ISE Radius? Given that the switch will be on Monitor only.

Thank you

Labels:
0 Helpful
8 Replies 8

Karsten Iwen
VIP
VIP

‎03-03-2023 09:58 AM

With the actual monitor option, the way you manage the device will not change. If later the Management-option on the Dashboard comes available, all these ways go away and there will be no SSH or local GUI.

--
If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

kfcanete
Frequent Visitor
Frequent Visitor
In response to Karsten Iwen

‎03-03-2023 10:03 AM

Hi,I was just finished onboarding our test switch now, and I can't connect thru SSH I am getting authorization failed. Would it be the added config override the previous SSH authentication config?

0 Helpful

joey.debra
Meraki Community All-Star
Meraki Community All-Star

‎03-04-2023 04:19 AM

This page has the config that will be pushed to your switch:
https://documentation.meraki.com/Cloud_Monitoring_for_Catalyst/Onboarding/Cloud_Monitoring_Detailed_Device_Configurations

If necessary try to connect to the switch with a console cable and try to see if you configured your method lists correctly. Since the meraki tool does apply aaa method lists, make sure you have default method lists for your initial vty lines. And of course a user of your own and the enable secret.

kfcanete
Frequent Visitor
Frequent Visitor
In response to joey.debra

‎03-09-2023 08:16 AM

All of my previous config are still intact, but the thing is since meraki added additional aaa config it might been conflict with my existing and now i cant access the switch thru SSH. I was able to login thru the console using a local account, but i was authenticated thru ISE so im a bit confused how the aaa process now with meraki in it.

0 Helpful

redsector
Level 8
Level 8

‎03-10-2023 08:19 AM

Works definitively with ssh when you chose the monitoring only option for the Meraki dashboard. Otherwise you weren´t able to do any changes on your switch. With the Meraki onboarding tool it´s an easy and guided way to put Catalysts (new Catalysts 9200...) into the Meraki dashboard.

Looks then like this:

image.jpeg

Managing via ssh.

0 Helpful

networks-at
Level 1
Level 1

‎11-27-2023 06:28 AM

We've recently added our core switches into Meraki dashboard (monitor only) via the onbording tool and now can't ssh to them. The authentication is still seen and auth'd by ISE but we get % Authorization failed then disconnected.

0 Helpful

joey.debra
Meraki Community All-Star
Meraki Community All-Star
In response to networks-at

‎12-03-2023 09:45 AM

Hmm, you'll have to check if your method lists (specifically aaa authorization method lists are still matching).

So check if you still have

aaa authorization exec default group <ISE-group>

networks-at
Level 1
Level 1

‎12-11-2023 05:36 AM

yes that worked only just managed to check as in the office so could console on

0 Helpful
Customers Also Viewed These Support Documents