- Community Home
- >
- Networking
- >
- IMC
- >
- Problem with testing Cisco ASA via telnet
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-16-2020 05:38 AM
тАО07-16-2020 05:38 AM
Hi,
I get an error "Incorrect username or password for telnet/ssh" testing access to Cisco ASA from IMC v.7.1. using "Test" button in "modify telnet settings" option.
However, both the username and password are entered correctly. I can telnet and login to this device from IMC server using the same credentials. I connected successfully using "telnet" and "plink" from IMC server Windows PowerShell.
I captured packets using Wireshark while running test from IMC and the correct username and password are visible. You can even see that ASA sends the text displayed during login and command prompt to IMC. So, in fact, logging into the device is successful.
So why we get an error ?
Do not be surprised I check telnet. This is only a diagnostic component of the broader backup problem.
Thanks
P.S.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-16-2020 11:55 AM
тАО07-16-2020 11:55 AM
Re: Problem with testing Cisco ASA via telnet
Hello,
A few things I can think of that could be causing the issue:
1) iMC simply does not get the correct prompt from the device during the test - are you sure the credentials provided in iMC access the 'enable' (manager) prompt? If not, then you should configure Telnet/SSH settings in iMC with an additional 'super' password that can get there.
2) iMC gets the correct prompt, but the hostname causes a mismatch.
For example, the 'System Name' in Device Details page for the device shows the FQDN format, but the prompt on the device does not include the FQDN (or vice versa). In other words, your device prompt is hostname# but the iMC System Name for the device is hostname.domain. That means iMC would expect a device prompt of hostname.domain# but can't match that as the device shows hostname# after login.
If that is the case, you need to make sure the hostname in the device prompt and the iMC System Name (acquired via SNMP) match. I think the command 'prompt hostname' should help on Cisco ASA.
I'm not entirely sure this applies for the 'Test' button, but it's definitely a factor when using the scripts for configuration center operations (backup/restore/deploy config/sw). See also this topic where I explained the issue in regard to the scripts https://community.hpe.com/t5/imc/imc-not-able-to-ssh-into-cisco-asa-s/m-p/7086871#M5841
3) You are hitting a bug in an older version of iMC. Are you still running a 7.1 version? If so, I'd suggest upgrading step by step to the latest version (latest is 7.3 E0705P06 at the moment). There were a few versions of iMC, years ago, where the Test button was bugged and reporting failure even when it was successful.
Hope that helps.
Justin
Working @ HPE
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-24-2020 02:09 AM - last edited on тАО07-24-2020 03:05 AM by Parvez_Admin
тАО07-24-2020 02:09 AM - last edited on тАО07-24-2020 03:05 AM by Parvez_Admin
SolutionHello @pioter00 ,
Has this helped you out, or do you need any further assistance?
Justin
Working @ HPE
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-06-2020 06:18 AM
тАО10-06-2020 06:18 AM
Re: Problem with testing Cisco ASA via telnet
It's most likely a bug, but you showed me the right direction for analyzing backup problems. There were bugs in the expect scripts executing this backup. They did not take into account all the messages that appeared during login.
Thanks !