Switching and Routing

Authetication SSH Switch HPE 5130 with RADIUS and MFA Microsoft

 

Authetication SSH Switch HPE 5130 with RADIUS and MFA Microsoft

Good morning everyone,

I already have on my network with switches HPE 5130 and 5900 authentication ssh via radius (Windows Server 2012), however, I'm needing to make work the authentication with Microsoft MFA, for windows and Linux is already working, however, when I log on via ssh appears the banner of the switch but soon in the sequence my session is closed.

4 REPLIES 4
akg7
HPE Pro

Re: Authetication SSH Switch HPE 5130 with RADIUS and MFA Microsoft

Hello,

Are you getting any error message when ssh session get closed?

Can you confirm the authentication mode and default user role from config?

Thanks!

I am an HPE Employee

Accept or Kudo

Re: Authetication SSH Switch HPE 5130 with RADIUS and MFA Microsoft

Hi,

No error messages, just close.

In Line VTY 0 the authentication mode is scheme and user role is network-operator.

Thanks.

akg7
HPE Pro

Re: Authetication SSH Switch HPE 5130 with RADIUS and MFA Microsoft

Hello,

Can you try to add like below:

ssh server enable

local-user operator
authorization-attribute user-role level-3
service-type ssh


user-interface vty 0 4
authentication-mode scheme
user-role network-operator

Thanks!

I am an HPE Employee

Accept or Kudo

Re: Authetication SSH Switch HPE 5130 with RADIUS and MFA Microsoft

Hi, Sorry for the delay, so, using your last solution i had the same problem....But i was able to resolve this issue with the command below:

role default-role enable network-admin

In this way, i have acces with Network Admin and the MFA Microsoft worked, but if I want access Network operator I put the command below:

role default-role enable network-operator

PS.: In the RADIUS Server no changes where needed.

Thanks for your help.