Cisco ASA - Cant logon SSH
On a Cisco ASA using ssh, I can logon with my AD account, but I cannot log on using a username I created locally on the ASA, why not?
ASKER
Yes, but I am not trying to logon with an AD account. I created a local user on the ASA and just simply want to ssh into the ASA using that local account.
I understand, the authentication would try AD first and then the local database.
ASKER
Then how do I get it to login?
Can you share your AAA & LOCAL config?
Also, is your ssh command configured to allow ssh from the particular host?
ssh <Inside host IP> <inside host netmask> inside
Also, is your ssh command configured to allow ssh from the particular host?
ssh <Inside host IP> <inside host netmask> inside
Sometimes, I've found that deleting that userid and then recreating it, helps.
I think that since the AD is always available, you would have difficulty having the Local database step up to authenticate. It's supposed to be used for the times when AD is inaccessible and you need to get into your device.
ASKER
ssh is allowed from the host, I have deleted and recreated the username as well. Thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Could you share what you mean? I'd like to know how you did it.
ASKER
Sure, I sent you a private message.
ASKER
I decided on an alternative non Cisco related since I couldnt get it working this way.
aaa authentication ssh console <AD> LOCAL
set?