Unsolved
10 Posts
0
2095
Dell switches on a Cisco network
My employer purchased 3 new switches (1-s3048/2-s4048) that are Dell to go along with the new server's we purchased from Dell. I am able to gain connectivity to the network, ping back and forth, and I've even accessed a port (on the Dell) via my laptop and am able to connect to other switches (Cisco) remotely via ssh. However, when I attempt to connect the Dell switches via ssh/putty nothing happens. I get the following log message below on the Dell switch:
*Login Failure for user admin on line vty 0. *
Has anyone experienced this? I can't post my configs because I work in a secure closed network. I think I tried everything I can think of the last three days. Also, I am authenticating through a Radius server.
DELL-Josh Cr
Moderator
Moderator
•
8.7K Posts
0
December 4th, 2019 11:00
Hi,
Were the steps for SSH on Page 903 done? https://topics-cdn.dell.com/pdf/smartfabric-os10-5-0_en-us.pdf
ToneB
10 Posts
0
December 4th, 2019 12:00
I do believe I did most of these things, like enable passwords and generate the keys. However, I will have to go through this list and ensure I did perform these steps.
When I attempt to access through putty, I am asked for login name. When I enter my username at the login prompt and press enter, it does nothing. After about 40 seconds or so it times out and a login failure message is displayed in the log.
ToneB
10 Posts
0
December 4th, 2019 12:00
Yep, did all these things. I think my problem lies in my RADIUS server. Is there something different I have to do different there in NPS vrs what I would for cisco?
ToneB
10 Posts
0
December 5th, 2019 11:00
Was able to the the s3048 working using the information posed here:
https://www.darylhunter.me/blog/2010/06/dell-powerconnect-radius-windows-server-2008-nps.html
However, doesn't seem to want to work for the s4048. Thoughts?
DELL-Josh Cr
Moderator
Moderator
•
8.7K Posts
0
December 6th, 2019 07:00
Try this
radius-server host {IP} key {key} timeout 5
aaa authentication login RadiusList radius local
line vtty 0 2
login authentication RadiusList
ToneB
10 Posts
0
December 11th, 2019 07:00
No, the information from the guide did not. Will try what you suggested in your latter post today.
ToneB
10 Posts
0
January 13th, 2020 12:00
Talk with you about this RADIUS issue a while ago, hope you are still monitoring this post. Here is the log output.
Jan 7 20:36:11.817 UTC %STKUNIT1-M:CP %SEC-3-AUTHENTICATION_FAILURE: Authentication failure on vty0 (laptop ip) for method "local" user "me"
Jan 7 20:36:11.717 UTC : RADIUS: Accounting failed. radCode = 0 radErrorCode = 4
Jan 7 20:36:11.616 UTC : RADIUS: Authentication failed. radCode = 0 radErrorCode = 4
Jan 7 20:36:11.506 UTC %STKUNIT1-M:CP %RADIUS-4-RAD_SERVER_UNREACHABLE: RAD0: Unable to authenticate with Radius.
Radius servers may not be reachable.
Jan 7 20:36:11.396 UTC : RADIUS: Status for id 76 - Reached retry limit
Jan 7 20:36:11.287 UTC : RADIUS: Err Callback - Request Handle: 0x4c, Error Code: 4
Jan 7 20:35:59.489 UTC : RADIUS: Retransmit id 76
Jan 7 20:35:48.000 UTC : RADIUS: Retransmit id 76
Jan 7 20:35:36.501 UTC : RADIUS: Retransmit id 76
Jan 7 20:35:25.733 UTC : Attribute 2 length 16 Password : *****
Jan 7 20:35:25.623 UTC : Attribute 1 length 10 User Name : mine
Jan 7 20:35:25.513 UTC : Attribute 31 length 12 Calling-station-id : laptop
Jan 7 20:35:25.403 UTC : Attribute 5 length 4 NAS Port : 0
Jan 7 20:35:25.293 UTC : Attribute 61 length 4 NAS Port type : 5
Jan 7 20:35:25.182 UTC : Attribute 4 length 4 #NAS IP Address : switch loopback ip#
Jan 7 20:35:25.072 UTC : RADIUS: Initial Transmit id 76, code 1, len 82, Access-Request
Jan 7 20:35:24.962 UTC : RADIUS: Calling Station ID = laptop ip
Jan 7 20:35:24.855 UTC : RADIUS: Try server #ip address#:1812 for id 76
Jan 7 20:34:38.348 UTC %STKUNIT1-M:CP %SEC-3-LOGIN_FAILURE: Login failure for user me on line vty0 ( laptop ip )
Jan 7 20:34:38.246 UTC %STKUNIT1-M:CP %SSH-6-CONNECTION: Connection closed by #laptop ip#
Jan 7 20:33:27.177 UTC %STKUNIT1-M:CP %SEC-5-LOGOUT: Exec session is terminated for user admin on line vty0 ( laptop )
(Reason : Admin Reset)
Jan 7 20:33:14.886 UTC %STKUNIT1-M:CP %SYS-5-CONFIG_I: Configured from vty0 ( laptop ip )by admin
s3048#
Suecurity Log from Event viewer from NPS
An account was logged off.
Subject:
Security ID: domain
Account Name: me
Account Domain: name
Logon ID: 0x1C928F2B
Logon Type: 3
This event is generated when a logon session is destroyed. It may be positively correlated with a logon event using the
Logon ID value. Logon IDs are only unique between reboots on the same computer.