The following example shows that AAA authentication and the SSH protocol have been configured. Check the VTY configuration, and ensure that the SSH protocol and AAA authentication have been configured for VTY channels. Log in to the device through the console port.
If the SSH server's port number has been changed, change the port number accordingly during the SSH login. If the SSH server uses another port, the port number must be specified when SSH clients log in to the SSH server. SSH client can log in to the SSH server with no port number specified only when the port number of the SSH server is 22. Ensure that the port number of the SSH server is consistent with that of the SSH client.Run the ssh server timeout seconds command in the system view to change the SSH authentication timeout interval. If the SSH authentication timeout interval is too short, users will fail to log in to the SSH server.If the protocol version of the client is later than or equal to 1.3 and earlier than 1.99, run the ssh server compatible-ssh1x enable command in the system view to enable the SSH server to be compatible with earlier versions. When the weak-encryption-algorithm plug-in is installed, check whether the SSH protocol version of the client is early.If the STelnet service is disabled, run the stelnet server enable command in the system view to enable it.The default port number is 22, which is not displayed. SSH server port :1026 //The server port has been changed. Stelnet server :Disable //Disable the STelnet service. SSH server key generating interval :0 hours SSH connection timeout :60 seconds //Set the timeout interval for SSH connection authentication. Timeout interval for SSH authentication.Log in to the device through a console port and run the display ssh server status command and ensure the following settings are correct:.Check whether the SSH server status on the server is normal.Run the undo local-aaa-user wrong-password command in the AAA view to disable the lock function.Wait for 5 minutes until the device automatically unlocks the IP address.If the IP address of a client is locked, solve the problem using the following methods: You can run the display aaa online-fail-record username username command in any view to check clients' IP addresses that are locked due to authentication failures.
I cannot access telnet on mac password#
local-user test password irreversible-cipher If a user enters incorrect passwords three times consecutively within 5 minutes when the client attempts to set up an SSH connection with the SSH server, the IP address of the client will be locked for 5 minutes, and the locked IP address cannot pass authentication. The configuration method is as follows: system-view Log in to the device through the console port and configure a new password.Log in to the device using a user account with a higher privilege level (at least level 3) than the previous user account, and configure a new password for the previous user account.If you are not sure whether the password is correct, perform the following operations to reconfigure the password: If they are inconsistent, enter the correct user name and password.
0 kommentar(er)
