02-07-2017 06:47 AM - edited 02-07-2017 06:54 AM
Good afternoon everyone!
I've got a strange problem that i cant seem to figure out.
last week i've updated 3x J9727A Aruba 2920 24G POE+ Switches with the newly released WB.16.03.0003 firmware.
The switches already had a configuration with a local password and with radius authentication and it seems that after the update the local passwords are gone.
So i've tried the following:
- Reconfigure the password for the local administrator account from CLI and Menu.. No success
- Reboot switch.. No succes
- Remove password.. No success
i just keep getting a Username and Password request that is wrong, no matter what i type in.
Now im wondering if i'm doing anything wrong or that this is a bug or something.
Because the radius authentication still works, so i can still login with those credentials.
Can someone help me out? Thanks in advance.
Solved! Go to Solution.
02-08-2017 03:20 AM
I tested this on our 2920 switches. Connecting to the console port I could logon as local manager without problems. Connecting using SSH I guess depends on your aaa config, if it tries Radius first or local first. If you've put Radius first it is my understanding that it will try Radius authentication as long as one of the Radius servers in the server group is alive and only revert to local authentication if all Radius server are unreachable.
This is our aaa config:
aaa authentication console login local
aaa authentication console enable local
aaa authentication web login radius server-group "ClearPass" local
aaa authentication web enable radius server-group "ClearPass" local
aaa authentication ssh login radius server-group "ClearPass" local
aaa authentication ssh enable radius server-group "ClearPass" local