Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3391
Views
0
Helpful
2
Replies

ASR 1004 and persistent SSH

Go to solution
jmfranco
Level 1
Level 1

‎06-21-2010 04:57 AM - edited ‎03-04-2019 08:51 AM

Hi.

Im trying to configure persistent SSH across management Interface in our new Cisco ASR 1004 platforms. Well, It seems to work fine, however when I try ssh to management interface:

1. TACACS+ authentication doesn´t work. Only local authentication (usernames configured in local) works with persistent SSH. Taking a view to ASR 1004 user guide, aaa is not supported over management interface configured for persistent SSH. Ok, it´s clear for me.

2. SSH session is stuck waiting for free TTY line, but only I´m trying to access to it ¿¿??. I only get into router emulation using persistent SSH, in diag mode pressing Ctrl+C or Ctrl+Shift+6, but you know in diag mode we won´t obtain full line vty capabilities. Anybody knows why don´t we obtain TTY line access using persistent SSH?

This is our config:

transport-map type persistent ssh sshmg
rsa keypair-name ASR_CBR4.elcorteingles.es
transport interface GigabitEthernet0
banner wait "*** WAITING FOR VTY LINE - CBR4***"
banner diagnostic "***DIAGNOSTIC MODE - CUBR4***"
connection wait allow interruptible

transport type persistent ssh input sshmg

B.R.

2.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
2 Replies 2

Go to solution
Nicholas Carrieri
Cisco Employee
Cisco Employee

‎09-21-2013 01:16 PM

http://www.cisco.com/en/US/docs/routers/asr1000/configuration/guide/chassis/Console_Telnet_SSH_Handling.html#wp1057152

You MUST use local authentication to work with Persistant SSH.

0 Helpful

Go to solution
Richard Burts
Hall of Fame
Hall of Fame
In response to Nicholas Carrieri

‎09-21-2013 02:06 PM

Nick

I am delighted to see that you have begun to post in the CSC. Welcome Aboard.

HTH

Rick

HTH

Rick
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card