Hello,
I have an IRF stack composed of 2x 5900 and 2x5920 switches.
I have a Windows NPS and configured the stack to use RADIUS.
I can successfuly connect to my switches with an AD login, but when I connect using ssh, I don't get a prompt and I am instantaneously disconnected.
For example :
ssh 10.xxx.xxx.xxx -l lscharf
lscharf@xxx@10.xxx.xxx.xxx's password:
******************************************************************************
* Copyright (c) 2010-2014 Hewlett-Packard Development Company, L.P. *
* Without the owner's prior written consent, *
* no decompiling or reverse-engineering shall be allowed. *
******************************************************************************
Connection to 10.xxx.xxx.xxx closed.
Configuration looks like that :
line vty 0 63
authentication-mode scheme
user-role network-operator
protocol inbound ssh
idle-timeout 30 5
radius scheme xxx
primary authentication 10.xxx.xxx.1
primary accounting 10.xxx.xxx.1
secondary authentication 10.xxx.xxx.2
secondary accounting 10.xxx.xxx.2
key authentication cipher xxx
key accounting cipher xxx
user-name-format without-domain
#
radius scheme system
user-name-format without-domain
#
domain xxx
authentication login radius-scheme xxx local
authorization login radius-scheme xxx local
accounting login radius-scheme xxx local
In the Windows Event Viewer, nothing abnormal, the connection is granted.
In the logbuffer I have SSHS/6/SSHS_LOG: Accepted password for lscharf@xxx from 10.xxx.xxx.xxx port 33420 ssh2.
So everything looks OK but that SSH connection is actually not working.
Anyone experienced that already and might have a solution for me ?
Thanks !
#windows#ssh#irf#Radius#5900