[rancid] New Cisco ASA Login Failure

2018-03-05 Thread Piegorsch, Weylin William
Hello, I have a Cisco ASA 5506X device I just deployed (running 9.8(2)20 version), that rancid’s not logging into properly. Clogincrc is set to method {telnet ssh} because there’s a plethora of really really old devices that hang when I try the other way around (and we haven’t been funded to

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread heasley
Mon, Mar 05, 2018 at 02:48:56PM +, Piegorsch, Weylin William: > Hello, > > I have a Cisco ASA 5506X device I just deployed (running 9.8(2)20 version), > that rancid’s not logging into properly. Clogincrc is set to method {telnet > ssh} because there’s a plethora of really really old

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread Piegorsch, Weylin William
Got it; thanks Heasley. I'll poke around on it. weylin On 3/5/18, 12:41 PM, "heasley" wrote: Mon, Mar 05, 2018 at 02:48:56PM +, Piegorsch, Weylin William: > Hello, > > I have a Cisco ASA 5506X device I just deployed (running 9.8(2)20 version), that

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread Bob Brunette
William, Your easiest solution might be to turn on auto-enable on your new ASA with this: aaa authorization exec authentication-server auto-enable That doesn't get to the root cause of the problem, but it avoids having to enter the "enable" command and password. Can you share your .cloginrc

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread Piegorsch, Weylin William
An interesting idea, hadn’t thought of that. Unfortunately I’m not able to noenable that device; security policy doesn’t allow direct login to superuser (for those devices that have that ability... eg NX-OS defaults). Here’s my entire .cloginrc, except that I’ve removed lines for individual

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread doug . hughes
I use add cyphertype aes256-cbc for all of our ASA-5*-X models, and it works. Sent from my android device. -Original Message- From: james machado To: "Piegorsch, Weylin William" Cc: "rancid-discuss@shrubbery.net"

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread james machado
That's what i get for replying too soon. It looks like your getting hit with the "last login" item that came up on the list in January. http://www.shrubbery.net/pipermail/rancid-discuss/2018-January/010020.html James On Mon, Mar 5, 2018 at 12:09 PM, Piegorsch, Weylin William

Re: [rancid] Brocade VDX

2018-03-05 Thread Ross [Eve IT]
I also use brcdvcs and it works fine. Debian Jessie 2 stacks of 6740s. Ross. On Sat, Feb 24, 2018 at 5:14 AM, heasley wrote: > Thu, Feb 22, 2018 at 09:44:47PM -0500, Doug Hughes: > > I have VDX switches working. > > > > I use brcdvcs type > > > > 2 6940 and 2 6740 in a

Re: [rancid] New Cisco ASA Login Failure

2018-03-05 Thread james machado
This is due to changes in the supported encryption methods in the updated IOS's and ASA softwares. in your .cloginrc you will want to add a line: add cyphertype {encryption method} you can find an encryption method your systems are happy with by doing the following: ssh -vv [...] debug2: