Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco SG300 with Spicework via SSH

I tried to add Cisco SG300-28 into Spicework but it doesn't work at all.

What I did
- Enabled SSH and SNMPv1 and SNMPv3 (Spicework show it's connected but can't get switch information)
- Disabled Firewall in Windows7
- I can use Putty to download running-config and startup-up confing from this switch into TFTP in spicework
 

Firmware:
SW version    1.3.7.18 ( date  12-Jan-2014 time  18:02:59 )
Boot version    1.3.5.06 ( date  21-Jul-2013 time  15:12:10 )
HW version    V01

Switch log:
2014-Mar-27 09:05:06 Warning %SNMP-W-SNMPAUTHFAIL: Access attempted by unauthorized NMS      
2014-Mar-27 09:05:06 Warning %AAA-W-REJECT: New ssh connection, source 10.2.101.13 destination 192.168.100.25  REJECTED, aggregated (2)      
2014-Mar-27 09:05:06 Warning %AAA-W-REJECT: New ssh connection, source 10.2.101.13 destination 192.168.100.25  REJECTED      
2014-Mar-27 09:04:32 Informational %AAA-I-DISCONNECT: User CLI session for user cisco over ssh , source 10.2.101.13 destination  192.168.100.25  TERMINATED. The Telnet/SSH session may still be co nnected.    

 
Please kindly advise to solve this issue.
 
Thank you very much
Everyone's tags (2)
6 REPLIES
New Member

Hi Max,I see here you try to

Hi Max,

I see here you try to connect to SNMP program and this program use SSH.  I like to see your config file and I will try it with my own switch.  Also about Spicework, it is free program? 

 

Thanks,

Moh

New Member

I will send switch

I will send switch configuration to your email.
please kindly provide your email address.
 

Yes, Spicework is a free program.

Spicework download link below
http://www.spiceworks.com/download/

 

Thank you very much.

 

New Member

Hi Max, Could you do show run

Hi Max,

 

Could you do show run and copy SSH and SNMP  sections and port them here?

 

Thanks,
Moh

New Member

config-file-headerbkk-sw-25v1

config-file-header
bkk-sw-25
v1.3.7.18 / R750_NIK_1_35_647_358
CLI v1.0
set system mode switch 

 

ip ssh server
ip ssh password-auth 
ip ssh pubkey-auth auto-login 
crypto key pubkey-chain ssh
user-key admin rsa
key-string row AAAAB3NzaC1yc2EAAAADAQABAAAAgQDFMQiPsbOX
key-string row MMNocuKtdU2H/YOJvyZrDHrOennUGSGdffOCHBMg
key-string row v22OPzzO5fci3JTTv/Gck5Eo6HxadTjEQPgdqoxH
key-string row qoKZeLkASgVQ+ww4/uFHOYowX7xCN4kf
key-string row fxHCYiMCiHY23IVx6TYl8Yf9vWTf0q6N0WTd9/8j
key-string row 5h/U0yN6FQ==
exit
exit
snmp-server server
snmp-server engineID local 8000000903b8621fd588eb
snmp-server location "IT ROOM"
snmp-server community ciscosg300 ro view Default 
snmp-server host 10.2.101.13 version 3 auth administrator udp-port 161 
snmp-server group spicework v3 auth notify Default read Default write Default 
encrypted snmp-server user administrator spicework v3 auth md5 jblmaMDCgbwhZ7DbT6DjE40YbGf6uBm1N12M7Xb6TZ0= 
ip http timeout-policy 1800 http-only 
no ip http secure-server
clock timezone ICT 7
clock source sntp
sntp unicast client enable
sntp unicast client poll
sntp server 10.2.101.1 
!
interface vlan 1
 no ipv6 address autoconfig 
 no ipv6 enable 
 no ipv6 dhcp client stateless 
!
interface vlan 5
 name VLAN_GUEST 
!
interface vlan 10
 name VLAN_LAN 
!
interface vlan 20
 name VLAN_MEDIA 
!
interface vlan 30
 name VLAN_WIFI_PUBLIC 
!
interface vlan 40
 name VLAN_ISP1 
!
interface vlan 50
 name VLAN_ISP2 
!
interface vlan 60
 name VLAN_TEST1 
!
interface vlan 70
 name VLAN_TEST2 
!
interface vlan 100
 name VLAN_MGMT 
 ip address 192.168.100.25 255.255.255.192 
!
interface gigabitethernet1
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 30 
 lldp med enable 
!
interface gigabitethernet2
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 30 
 lldp med enable 
!
interface gigabitethernet3
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet4
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet5
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet6
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet7
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet8
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet9
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet10
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet11
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet12
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet13
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet14
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet15
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet16
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet17
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet18
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 10 
 lldp med enable 
!
interface gigabitethernet19
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 60 
 lldp med enable 
!
interface gigabitethernet20
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 60 
 lldp med enable 
!
interface gigabitethernet21
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 60 
 lldp med enable 
!
interface gigabitethernet22
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 60 
 lldp med enable 
!
interface gigabitethernet23
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 40 
 lldp med enable 
!
interface gigabitethernet24
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 40 
 lldp med enable 
!
interface gigabitethernet25
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 50 
 lldp med enable 
!
interface gigabitethernet26
 storm-control broadcast enable 
 storm-control broadcast level kbps 3500 
 storm-control include-multicast unknown-unicast 
 port security mode max-addresses 
 port security discard 
 spanning-tree bpduguard enable 
 switchport mode access 
 switchport access vlan 50 
 lldp med enable 
!
interface gigabitethernet27
 storm-control broadcast enable 
 storm-control broadcast level kbps 50000 
 storm-control include-multicast unknown-unicast 
 switchport trunk allowed vlan add 5,10,20,30,40,50,60,70,100 
 lldp med enable 
!
interface gigabitethernet28
 storm-control broadcast enable 
 storm-control broadcast level kbps 50000 
 storm-control include-multicast unknown-unicast 
 switchport trunk allowed vlan add 5,10,20,30,40,50,60,70,100 
 lldp med enable 
!
exit
ip default-gateway 192.168.100.1 
encrypted ip ssh-client key rsa key-pair

New Member

Hi, did you ever got this

Hi, did you ever got this working? Looking for the same thing.

Also tried alternatives via Putty and input files to automate backups of these devices.

So far without luck.

Remko

Hi Remko,I guess Jody

Hi Remko,

I guess Jody answered your question.

https://supportforums.cisco.com/discussion/12375366/login-ssh-without-user-name-and-password

Automatic login was added only with 1.2.9 release.

Aleksandra

943
Views
0
Helpful
6
Replies
CreatePlease login to create content