HPE Community
Comware Based
1823275 Members
3267 Online
109648 Solutions
New Discussion

HP A5800 SSH & Telnet Login fails

 
burkhardtgmbh
New Member

‎10-28-2015 02:55 AM

‎10-28-2015 02:55 AM

HP A5800 SSH & Telnet Login fails

Hi,

 

we can't access our A5800 over SSH or Telnet. If we try access over ssh i always get "access denied" after using the web-interface user. If i try to connect over telnet with putty after clicking open, i can see the black console windows for a very short time, then it is closing itself.

 

I'm a beginner on Comware Switches. If it is helpful for you, this is the part in my actual config:

 

ssh server enable
#
 load xml-configuration
#
 load tr069-configuration
#
user-interface aux 0 1
user-interface vty 0 15
 authentication-mode scheme
 protocol inbound ssh

0 Kudos
3 REPLIES 3
TerjeAFK
Respected Contributor

‎10-28-2015 05:01 AM

‎10-28-2015 05:01 AM

Re: HP A5800 SSH & Telnet Login fails

Try the following config, it works on our 5900 switches:

 

 

line aux 0
 terminal type vt100
 user-role network-admin
 idle-timeout 15 0
#

line vty 0 15
 terminal type vt100
 authentication-mode scheme
 user-role network-admin
 user-role privilege
 protocol inbound ssh
 idle-timeout 0 0

#

 

0 Kudos
sdide
Respected Contributor

‎11-03-2015 01:08 AM

‎11-03-2015 01:08 AM

Re: HP A5800 SSH & Telnet Login fails

Hi,

What is your "scheme"?

You do:

user-interface vty 0 15
 authentication-mode scheme

 

But you do not tell us what scheme you use?

 

To test the telnet part only i recommend, that you use

user-interface vty 0 15

  authentication-mode password

  set authentication password simple <password>

  protocol inbound both

 

Try and login with telnet. You should be prompted for the password.

 

If you want to try ssh, you need to create a user with a password, and then set

 

 

domain system

 authentication login local

default domain system enable

 

and

user-interface vty 0 15

  authentication-mode scheme

 

 

Regards

 

 

 

Søren Dideriksen, Network Administrator
Region Midtjylland
0 Kudos
VoIP-Buddy
HPE Pro

‎11-03-2015 07:49 AM

‎11-03-2015 07:49 AM

Re: HP A5800 SSH & Telnet Login fails

There are a couple more things you are missing...

 

For SSH:

- Make sure you generated the public-key pairs... in system mode, use the public-key local-key command to generate RSA, DSA, or both, key pairs.

- You also need to tell ssh who the ssh user is...

ssh user ssh service-type all authentication-type password

- Your vty setup is fine.  You don't need anything else

 

For Telnet:

- Telnet server enable

 

The users should be set up something like this, depending on what you want to do...

 

local-user admin
password simple <whatever password you like>
authorization-attribute level 3
service-type telnet
service-type ftp


local-user sshuser
password simple <whatever password you like>
authorization-attribute level 3
service-type ssh
service-type ftp

 

The local users can be whatever you'd like.  The authorization level sets user privilege.  Set that as you see fit.

 

If you are going to use FTP, don't forget to do the ftp server enable command as well.

 

Regards,

David

I work for HPE in Aruba Technical Support
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.