05-03-2012 04:07 AM - edited 03-07-2019 06:28 AM
Hi,
I'm on a Cisco 2955 switch and need to get ssh workgin which I have done on another 2955 (but don't have near me), what am I dogin wrong?
2955-02-PJ-CamdT.LU#sh run
Building configuration...
Current configuration : 4061 bytes
!
version 12.1
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
service password-encryption
!
hostname 2955-02
!
logging buffered 64000 debugging
no logging console
aaa new-model
enable secret 5 $1$6eSD$eB19P9CoH6VPNejFp5/
!
username admin privilege 15 secret 5 $1$wPVm$ptIpMJbGxRlv1hwe.D.
clock timezone GMT 0
ip subnet-zero
!
no ip domain-lookup
ip domain-name SO-DGI
ip ssh time-out 120
ip ssh authentication-retries 3
ip ssh version 2
!
no file verify auto
!
(removed)
!
line con 0
line vty 0 4
transport input ssh
line vty 5 15
no exec
!
end
2955-02#
The error I get is:
login as: admin
password:
Access denied
Driving me mad, any ideas?
05-03-2012 04:14 AM
Andy,
You need to have aaa configured:
aaa authentication login default local
You have aaa new-model enabled, so you should just need to configure the above.
HTH,
John
05-03-2012 04:28 AM
Along with John's statement make sure you have created the crypto keys also .
05-03-2012 07:20 AM
Hi john,
by default the authentication method DEFAULT is applied to the line when aaa is enabled so no need to add the command.
Regards.
Alain
05-03-2012 04:39 AM
Think I have this solution, I didn't know you couldn't copy and paste the secret encrypted passwords over, I copied over in clear text and it was fine!
Thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: