Wireless Access

Reply
Highlighted
Regular Contributor II

AOS8 mdconnect

Hello,

 

We are implementing AOS8.4.0.2 and I am configuring the new MDs. If I want to look at the config from the CLI I believe I need to cd to the actual node, and then type 'mdconnect', but when I do that I get an error:

 

(master-8a) [00:1a:1e:xx:xx:xx] (config) #mdconnect

Redirecting to Managed Device Shell
Permission denied: wrong username or password

Exiting Managed Device Shell

 

Is there something else I need to configure to make this work?

 

Thanks

 

 


Accepted Solutions
Highlighted
Contributor I

Re: AOS8 mdconnect

I opened a TAC case and they were able to resolve the issue by changing SSH Authentication from User credentials to Both. 

This is found on the MD>Configuration>System - Admin Authentication Options.

 

Thanks everyone for your help!

View solution in original post


All Replies
Highlighted
MVP Guru

Re: AOS8 mdconnect

Can you SSH directly to the MD's with the same username and password?


ACMP, ACSA, ACDX #985
If my post addresses your query, give kudos:)
Highlighted
Regular Contributor II

Re: AOS8 mdconnect

I can SSH to all of the controllers. But when I issue the 'mdconnect' command it doesn't actually ask me for a password, it just instantly comes up with the error message, which makes me wonder if I am supposed to have activated/configured mdconnect somewhere?

Highlighted
Frequent Contributor I

Re: AOS8 mdconnect

You don't have to configure anything for mdconnect to work, not explicitly anyways.

 

Do your MDs show up on the MM? I think the mdconnect command uses locally configured mgmt-users and SSH keys. I have this configured on all of my MDs and MM:

mgmt-user ssh-pubkey client-cert master-ssh-pub-cert seamless-logon read-only node  
mgmt-user ssh-pubkey client-cert master-ssh-pub-cert seamless-logon-w standard node

(mmisbaruba1) *[00:1a:1e:02:39:d8] #show mgmt-user ssh-pubkey 

SSH Public Key Management User Table
------------------------------------
CLIENT-CERT           USER               ROLE        STATUS   REVOCATION CHECKPOINT  Max-concurrent-sessions
-----------           ----               ----        ------   ---------------------  -----------------------
master-ssh-pub-cert   seamless-logon     read-only   ACTIVE   none                   N/A
master-ssh-pub-cert   seamless-logon-w   standard    ACTIVE   none                   N/A

If that's missing I'm not sure how to configure it.

Highlighted
Regular Contributor II

Re: AOS8 mdconnect

Thanks for looking. Hmmm, yes those are already configured

Highlighted
Contributor I

Re: AOS8 mdconnect

Did you ever get this working? I'm having the same issue.

Highlighted
Regular Contributor II

Re: AOS8 mdconnect

It is working, but I'm afraid (unhelpfully) I don't remember what got it working. I'm not sure I (knowingly) did anything to fix it. What version of AOS are you running?

Highlighted
Contributor I

Re: AOS8 mdconnect

8.5.0.2

Highlighted
Regular Contributor II

Re: AOS8 mdconnect

Is your cluster properly L2 connected?

Highlighted
Guru Elite

Re: AOS8 mdconnect


@tmcclintic wrote:

8.5.0.2


Okay.  Just to see if this is your issue, please SSH into the MD and type this:

 

show running-config | include master-ssh-pub-cert

*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: