- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Re: SSH problem between PCM3+ and 5406zl
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-31-2010 07:30 AM
тАО05-31-2010 07:30 AM
Since we updated from PCM2.3+ to PCM3.1+, we have a problem to communicate in SSH mode with our three 5406zl.
When we use "Test Communication Parameters in PCM", the result with SSH is "Failed : Device Unreachable", but in the switch's log a message indicating that a SSH connection is established from the server.
When the parameters in PCM is changed to use the telnet mode, the test is ok.
When the software PuTTY is used from the server where PCM is installed, the ssh connection works fine.
On all other device on our network the SSH mode works fine with the same login/password without problem.
Our three 5406zl are with the firmware K.14.41 and this problem is same on the three device.
Someone had an idea about this problem?
Thanks
F.Saint-Michel
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-31-2010 10:14 PM
тАО05-31-2010 10:14 PM
Re: SSH problem between PCM3+ and 5406zl
if you do not have operator login/password enabled for those 5406's (and have only manager login/password set) do configure operator login/password these devices and provide the same in PCM via "Device Manager > Communication Parameters in PCM".
let know how this goes about?
`Javed
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-31-2010 10:47 PM
тАО05-31-2010 10:47 PM
Re: SSH problem between PCM3+ and 5406zl
Thanks for your answer but on the three 5406zl I've configured Manager AND Operator login/password.
The test communication in telnet mode with the login/password for Manager and Operator works fine but not in SSH mode, whereas with other software such as PuTTY or with SSH session from Linux server, it works fine.
As if in PCM, a validation of the SSH key was pending as at a first connection using SSH.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2010 12:23 AM
тАО06-01-2010 12:23 AM
Re: SSH problem between PCM3+ and 5406zl
#show crypto host-public-key
I dont remember exactly If PCM will accept the key or only needs the fingerprint/babble only, you can check on the PCM guide
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2010 12:59 AM
тАО06-01-2010 12:59 AM
Re: SSH problem between PCM3+ and 5406zl
The case that you explain is if you used the SSH authentification key.
In this case, the fingerprint of the device is needed and can be obtained with the command "show crypto host-public-key fingerprint", and the public-key of PCM must be copied by tftp on the device (file procurveSSH2.pub or procurveSSH1.pub in the folder server/config).
I try this solution too but unfortunately the result is same.
Thank you anyway.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2010 01:06 AM
тАО06-01-2010 01:06 AM
Re: SSH problem between PCM3+ and 5406zl
The way you mentioned is that when the PCM itself is using private/public combination to authenticate itself to the switch then you need to copy the PCM public key to the switch.
Try to update the PCM to update 2 and check after that.
Also try to remove the SSH key pairs form the switch using the command:
#crypto key zeroize ssh
Then disable SSH, create another crypto key, enable SSH and copy the new public key to PCM.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2010 01:39 AM
тАО06-01-2010 01:39 AM
Re: SSH problem between PCM3+ and 5406zl
I tried to remove the SSH key and create another one as you describe.
I agree with you about the way I mentioned in my last message for the SSH Authentication key methode.
For you, the public-key of the device must be save in PCM even when user/password authentification is used. Well! Why not?
But, can you tell me where the device's public-key must be save in PCM ?
However, I don't understand why the SSH mode with user/pwd authentication works fine with the same parameters and same Manager and Operator user name and password on other Procurve devices (2610 / 2520G / 2510 / 2650 / 2848 / 2824), and without save public-key of each device on PCM.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2010 01:50 AM
тАО06-01-2010 01:50 AM
Re: SSH problem between PCM3+ and 5406zl
I only noiticed when I tried to update the software or send a CLI command it would time out and the logs on the switch would show repeated connection attempts using the Operator account. When I right and click and run SSH to the switch from PCM - works striaght away.
I logged a call with Procurve and they told me to go to 14.55 ED still didnt work. no joy.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2010 04:18 AM
тАО06-01-2010 04:18 AM
Re: SSH problem between PCM3+ and 5406zl
Try to delete the device then discover it again and don't use the default settings (uncheck) and put the credintials manually in the wizard and see. if the same issue then check the PCM event logs what errors do you find it might help
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-02-2010 04:30 AM
тАО06-02-2010 04:30 AM
Re: SSH problem between PCM3+ and 5406zl
I've just tried to use the SSH credential with key authentication because the other method doesn't work.
Also, I've already deleted the device then discover it again and defined the communication parameters manually in the wizard, without success.
In the PCM events, I noticed this error message several times :
"Failure in VT discovery for device:
And the device_IP is the IP address of each three 5406zl.
Trevor : I'm pleased to learn that I'm not alone to have this problem. I was expecting that the latest firmware doesn't provide the solution of this problem.
But, I don't despair to find the solution... one day. The sooner the better, isn't it!