Wired Intelligent Edge

 View Only
last person joined: 2 days ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Expand all | Collapse all

Avaya 2620-24g (and others)

This thread has been viewed 9 times
  • 1.  Avaya 2620-24g (and others)

    Posted 2 days ago

    I am unable to log in using GUI but can authenticate SSH fine. This is the case with the 2620, 2920, 2930.

    Any suggestions? We have a mixed aruba managed, aruba standalone environment.



  • 2.  RE: Avaya 2620-24g (and others)

    Posted 3 hours ago

    Hi

    can you please elaborate a bit more on what "unable to log in using GUI" exactly means? Is the web GUI showing up or is perhaps the web server disabled? Can you log in but without administrative access or is your user denied login at all? 

    Are you trying with a local account or RADIUS/TACACS remote auth?

    Kindly, share the running configuration of your switch, with focus of RADIUS/TACACSs and/or "aaa" parts, so we can see what is configured and help you identifying the issue you have. 

    Regards, 
    Thomas




  • 3.  RE: Avaya 2620-24g (and others)

    Posted an hour ago

    I can log in SSH using local manager creds. Radius and aaa are not configured in the config. The web login loads, but will not accept the manager creds. So the web server is not disabled, but the creds are not being relayed to the switch, something like that. 

    hostname "xxxxxxxxxxxx"
    max-vlans 64
    time timezone -300
    time daylight-time-rule Continental-US-and-Canada
    no qos dscp-map 101110
    trunk 26 Trk1 Trunk
    ip default-gateway 10.180.30.1
    vlan 1
       name "Default"
       untagged 25,27-28,Trk1

    etc etc




  • 4.  RE: Avaya 2620-24g (and others)

    Posted 48 minutes ago

    Okay, that sounds a bit strange. To double check, could you please run the following commands and post the output?

    • show authentication
    • show web-management
    • show version
    • show time
    • show run | in password
    • show run | in aaa

     

    Please sanitize any confidential information but do not remove any entire lines from the output.

     

    Moreover, try a login on the web and have a look at the switch's log:

    • show log -r

    Please post any message that has to do with the login attempt.

     

    Regards,

    Thomas

     

     






  • 5.  RE: Avaya 2620-24g (and others)

    Posted 31 minutes ago

    If these are Aruba/HP/HPE/Provision switches (2920/2930), then you need to configure management credentials for ssh and web individually. This is my config (using RADIUS):

    aaa authentication login privilege-mode
    aaa authentication web login radius server-group "CPPM" local
    aaa authentication web enable radius server-group "CPPM" local
    aaa authentication ssh login radius server-group "CPPM" local
    

    The login privilege-mode may be needed to bypass the enable prompt.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------