07-06-2018 12:40 PM - edited 03-08-2019 03:36 PM
Hi
I wanted to know if someone could look at my config and tell me what i'm missing from it in order for me to use AAA to login into my switch. What I've done so far is I've added it to the radius server and I've added the lines to my config and I can only log in using telnet.
Eric
Solved! Go to Solution.
07-06-2018 02:01 PM
07-06-2018 12:42 PM - edited 07-06-2018 12:44 PM
Not sure what switch it is but did you generate an rsa key?
Edit, I see it's a 2960x.
07-06-2018 12:46 PM
Thanks for the quick reply and what command would I use to generate the rsa key and thanks again.
07-06-2018 12:48 PM
07-06-2018 12:53 PM
I just tried and it came up and said "You already have RSA keys defined named Southwest.com they will be replaced"
07-06-2018 01:06 PM
07-06-2018 01:08 PM
argh first try matching the vty login authentication to the aaa list.
one says USC the other says UCC.
07-06-2018 01:12 PM
I'm on my way home but when I get there I'll generate a new key and let you know what happens.
07-06-2018 01:25 PM
Hi there,
Your first 5 VTY lines are not using your AAA method 'UCS'. Try the following config:
! line vty 0 4 privilege level 15 no password 7 00071A150754 login authentication USC transport input all ! line vty 5 15 privilege level 15 login authentication USC transport input all !
cheers,
Seb.
07-06-2018 02:01 PM
07-06-2018 02:35 PM
Thank you so much for the help, I added the Login authentication USC and now SSH is working.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide