Cisco :: Prime LMS 4.1 Credential Verification - Nexus SSH Fails
Feb 21, 2012
I recently installed and configured the Prime LMS 4.1 Soft Appliance. After discovering the devices on the network I ran a credential verification check on everything. All of my devices passed accept for the Nexus 7010s and Nexus 5020s -- these show up in the failed device report with a BLANK value for SSH and "Did Not Try" under Enable by SSH. I have verified SSH is enabled and accessible outside of Prime, and that there are no access lists preventing access. All other tests pass for these devices.
I've also visited the troubleshooting workflow section for these devices, and when I test the connectivity, SSHv2 passes.
I've downloaded all of the updates available for the device packages and have tried other credentials. All other aspects seem to be working properly.
View 10 Replies
ADVERTISEMENT
Nov 6, 2011
when running Credential Verification Report, I get following notification: "None of the devices have credential verification data".I have made different Default Device Credential sets that I'm using when I add devices to LMS. I could not see wether this is bug in LMS 4.1 or if I have to do this a different way?
View 1 Replies
View Related
Aug 16, 2011
i get for all devices telnet credential failed in my credential verification report. I exported the device from the Device Manager into a csv file to verify the correct passwords.The export shows the correct values in
<DEVATTRIB Name="primary_username">cwuser</DEVATTRIB>
<DEVATTRIB Name="primary_password">secretpassword</DEVATTRIB>
View 4 Replies
View Related
Mar 14, 2013
we are having trouble logging into the webinterface of our DCNM installation.
(Cisco Prime DCNM 6.1(2), Windows 2008 R2 SP1 64 bit version, US)
Everything seems to be working fine so far, except the login to the webinterface.
When calling https://<SERVER_IP> (we're using 443 and 8443 in our setup), the login page appears. Entering the credentials results in the message "Authentication Failed. Please try again.". We tried that from a remote machine and the server itself and are using local authentication (not RADIUS or LDAP, ...).
On the other hand, when running the DCNM LAN Client (using the same credentials not working for the webinterface), there is a link (see image below: "here") pointing to the webinterface.
[code]....
View 1 Replies
View Related
Jun 19, 2011
I inherited a Ciscoworks installation, and would like to create a credential set for a certain class of device. However, after searching around the interface and documentation, I cannot find instructions on how to add a credential set with certain snmp, ssh, credentials. We use ACS authentication and authorization?
View 1 Replies
View Related
Nov 22, 2012
We migrated to LMS4.2 and i created new credential set and set it as the default. However, the new cdredential set applies only to newly added devices no to the migrated devices. for example when i run device credential verfication for a migrated device, the username used my LMS is "cwuser" as opposed to the one i created with the new credential sets. how can i make this new credentila set be applicable to all devices?
View 3 Replies
View Related
Feb 20, 2011
I have a problem with my AnyConnect clients connecting to an AD network via a 5510. Anyconnect VPN clients provide AD plus a one time passcode to authenticate to the 5510. This works fine apart from 3 things:
1. Once the VPN session has been established the user is further prompted for AD credentials when accessing an AD share for the first time. Once they provide the credentials the share can be accessed. Should the AD credentials not be passed through when the VPN connection is established? Or is this by design? What makes me think it's not be design is the fact that this could be related to problem 2.
2. Group Policy Update (windows gpupdate) fails. This again suggests to me that the full client/server relationship is not fully in tact.
3. In order to get Outlook to connect to exchange I've had to change Outlooks security settings from Negotiate (which would naturally choose Keberors), to NTLM. Not sure if this is related or not.
Note: DNS is functioning with out any problems
Maybe the first 2 issues are by design, but I thought the whole idea behind the AnyConnect VPN was that the remote machine would function as if connected to the LAN?
View 1 Replies
View Related
Jan 16, 2012
I have a case for an LMS 4.0 running in a Live environement (With devices already discovered and organized into seperate groups), where the Device Credential and repository DCR is showing suddenly as empty and only i can see the groups listed, but without any devices in them (Through Inventory > Device Administration > Add/Import/Manage Devices).After a restart of the whole LMS server a few weeks ago, the problem was fixed and the devices appeared again, but now the same issue re-appeared.
View 5 Replies
View Related
May 9, 2013
I'm currently running CiscoWorks LMS 4.0.1 on Windows 2003 under VMware and just got upgrade licensing for Prime Infrastructure 1.2. I am assuming that I will need to upgrade the current server to Prime LMS 4.2 in order to ensure that data migration to Prime Infrastructure goes well. I am planning to follow Cisco's recommendation to run Prime LMS and Prime Infrastructure in parallel for a time and migrate individual functions.
My real question is about Syslog handling. All of the managed devices are currently sending Syslog data to LMS. As a last step in the migration, is it possible to change the IP address of the Prime Infrastructure server to replace the Prime LMS server so that the Prime Infrastructure server will just start getting all the Syslog data, or do I need to go change hundreds of managed devices to point to a new address?
View 2 Replies
View Related
Mar 12, 2013
What is the relation between: cisco NCScisco Prime LMSCisco Prime infrastructure.As i orderd a Cisco Prime infrastructure from a Cisco Partner and what i got is :
x2 cisco NCS appliances
x1 DVD cisco prime infrastructure
x1 DVD Cisco prime 4.2
View 4 Replies
View Related
Mar 18, 2011
I'm having issue with 881W router. this router doesnt let me logon to it after I restart the router and enter correct credentials. after being at the router - it doesn't let me logon to its AP module even after adding correct credentials. I've changed 2 routers so far but see same issue.
try to setup up credentials using: username <username> privilege 15 secret 0 <password> or username <username> priviledge 15 password 0 <password>
View 4 Replies
View Related
Mar 31, 2009
I am trying to install a digi cert on a 7921 and I get the message on import of "certificate verification failed".as there does not seem to be much documentation with the above error message.
View 2 Replies
View Related
Jan 3, 2012
I have a problem when doing this report. If I do a device credentials report on a user defined group (40 devices) 11 of these devices fails to connect via SSH. I can make an SSH connection to all 11 devices from the CiscoWorks server, but 11 devices still fails on the report
Device Name Read Community Read Write Community SSH
1. 149.212.XXX.164 Ok Ok Failed to connect.
2. 149.212.XXX.153 Ok Ok Failed to connect.
3. 149.212.XXX.152 Ok Ok Failed to connect.
4. 149.212.XXX.151 Ok Ok Failed to connect.
5. 149.212.XXX.150 Ok Ok Failed to connect.
[code]....
View 2 Replies
View Related
May 28, 2012
My Dell Laptop is connected to Wildbue via LAN connection to Broadband. January or February I connected Belkin Router to obtain Wi-Fi access for other laptops, Cell and PS3, Everything seemed to be working fine. I tried to disconnect the Dell in order to use it via Wi-Fi. This caused problems when my sons laptop lost connection. My guess was that it was actually routed through the Dell via network. Anyway, as I was working to network all correctly. My sons friend decided that he couldn't wait for internet and forced another laptop to login to internet. In the process, it appeared that he changed by router password so that I could not access it. Being a beginner when it comes to network connections, etc., I spent alot of time trying to correct the Belkin Router. I finally disconnected the router and attempted to remove all detail on my Dell. I am sure that my adapter information is not completely accurate. Or so it appears. Note that I do have LAN internet connection and I can search for wireless access. If necessary, I will reinstall the Belkin Router since it is my understanding that it is needed for Wi-Fi access to my internet provider connected via Broadband modem.
I am sure that there will be corrections. I am sure that there is more that will need to be done in order to provide access to other laptops and cells. At this time, I am getting internet on my main laptop that is connected via LAN connection. However, I am having problems understanding adapters for wireless connects.
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:Documents and SettingsPenis>IPCONFIG/ALL
Windows IP Configuration
[code]...
View 1 Replies
View Related
Jan 25, 2013
Recieved this unit from an individual who has very little knowledge (like myself) with the 800 series.
I'm having issues just getting into this device, when I power it on and console into the unit i am presented with an "Access Verification" prompt that requires credentials that I do not have/know.
At some point (not sure how) I managed to get to a "yourname#" prompt at which point I configured using this document here and created a username and password and some other basic settings, I saved the config and did a reload and it takes me right back to that "Access Verification" prompt.
Sould I be using the CCPE to gain access to this device instead? Is there a way to recover that "Access Verification" username and pass? How did I ever get to that "yourname#" prompt?
View 7 Replies
View Related
Jun 4, 2012
I'm trying to troubleshoot a problem with mpls fast reroute. The primary (protected) link is between PE-PE and the backup link is PE-P-PE. The IGP I'm using is OSPF. When there is a issue with the primary link and debug mpls tra tunnels signalling there is a message "LSP-TUNNEL-SIG: TunnelX [237]: re-route path verification failed (protected) [Can't use link x.x.x.x on node x.x.x.x]". After 30 seconds (without ospf tuning) the SPF is recalcalated, but that's not the point From the show mpls tra tunnels tu1013 (the backup one)everything looks ok:
Status:Admin: up Oper: up Path: valid Signalling: connected From show mpls tra fast-reroute database everything is ok, the status is Ready I'm using 7206VXR, Version 12.4(24)T3
View 0 Replies
View Related
Oct 27, 2011
I have a 6509E switch with dual 6Kw power supply that is logging "Power supply 1 input has changed. Power capacity adjusted to 2671.20W" then will bounce back to normal at random times from 1sec to 10sec. Is there a command to check what each input level of the power supply to try to identify possibly which source is causing the problem? The power supply input lights remains green while this is occuring.
View 3 Replies
View Related
Aug 2, 2011
We plan to use machine certificates on our notebooks with Windows Vista. Our authenticating server is Cisco ACS 5.1. To access the wireless network we want to use the machine certificate of the notebook and a verification of the corresponding computer account in the Active Directory. What authentication method is the best to check the machine certificate and if in the Active Directory exist the enabled corresponding computer account ? How to configure the ACS and the notebook to use it like described ?
View 1 Replies
View Related
Apr 1, 2013
I'm trying to test port-security in my c3550 but when I show port-security int f0/23 shows it only "Disabled" as below:
run
interface FastEthernet0/23switchport access vlan 200switchport mode dynamic desirableswitchport port-security mac-address stickyspanning-tree portfast
View 2 Replies
View Related
Sep 19, 2012
Network newbie need to verify all necessary services and protocols on a new WS-C6509-E are turned on. This layer 3 switch will be used to connect to servers.
Cisco IOS Software, s72033_rp Software (s72033_rp-ADVIPSERVICESK9_WAN-M), Version 12.2(33)SXI9, RELEASE SOFTWARE (fc2)
[Code]....
View 6 Replies
View Related
May 24, 2012
I seem to get conflicting information on using the Management port as a regular routed interface on the ASA5510..The management interface can be used for the traffic that passes through the firewall as well. The Security Plus License for the ASA 5510 is required in order to use the management0/0 port as a regular interface. With a base license on the 5510, the management0/0 port cannot be used as a regular interface.
I believe that I saw another post that mentioned it was part of the standard IOS if you had a later version.
View 2 Replies
View Related
Feb 23, 2011
We are facing issue of continous packet discards On nexus4001L link (int po2) to Nexus5020 switch. Nexus4001L is installed in IBM blade center server and we have FCOE enabled in this setup. [code]
View 2 Replies
View Related
Mar 15, 2013
I have been tasked to replace the existing Cat 6500 and 3750 switches by Nexus 7000 and Nexus 2000.I was told initially my boss plans to get 2 x Nexus 7000 and then eventually blow up to 4 x Nexus 7000s.For Nexus, is there a list of tasks / points that i need to consider for building the initial design?
Can i just link the Nexus 7000 like the following?
N7k-A ========= N7k-B
| |
lots of N2ks lots of N2ks
View 12 Replies
View Related
Dec 22, 2011
Struggle to find the SNMP MIBS of the Nexus 5000 FEX tranceivers.
View 3 Replies
View Related
Nov 13, 2012
we are planning a Nexus datacenter project with this layout:Our experiences with Nexus switches are not so large until now and the manuals are very extensive.Both N5K´s should be connected directly with all 4 N2K switches. I did not find a layout like this in the manuals. Only a design,where only 2 N2K are connected to one N5K, with this fex config:Now I´m not sure if it is right to make a config like this with the same slots and fex´s or with different slots and fex´s.
View 1 Replies
View Related
Jun 12, 2012
I recently installed LMS 4.2 appliance and I noticed that the web administration page was really slow. I checked the CPU utilization in VMware and it was at 55%.
View 1 Replies
View Related
Nov 28, 2012
I am using Prime LMS 4.2.2 software to archive configuration for my cisco Network Device switch and firewall . All works fine except for two new Cisco ASA 5525 and ASA 5545 ( Software Version 8.6.1.2 ) . I have already checked credential , ssh access , snmp configuration and all seem correct. But Archive configuration job end with failure. This is the error message:
View 1 Replies
View Related
Apr 22, 2012
My customer is using Cisco Works LMS 4.0 ( Product # : CWLMS-4.0-300-K9 ) and we they are willing to upgrade it to Cisco Prime LMS 4.2 (or latest version). as well as adding additional device licenses to become 750
View 1 Replies
View Related
Feb 1, 2012
have bought license for LMS 4.0. I want to upgrade to 4.1. Should i buy any additional PAK for the license upgrade?
View 1 Replies
View Related
Oct 31, 2011
Will Cisco LMS Prime 4.1 be getting a map module, so you are able to see a graphical map of up and down status of devices? I know the topology map is a module within LMS, but what would be nice to see is a graphical map, where you are able to manipulate the icons to place them on that status map.
View 2 Replies
View Related
May 19, 2013
How do I add the MSE 7.4 VM to Prime 1.3.20?
The Prime uses https or http when trying to add the MSE. But those ports are closed on the MSE. The MSE seems to expect traffic on tcp 8001.
We did not change the default NCS-username/password in the startup-wizard.
C:WindowsSystem32>nmap 192.168.0.211
22/tcp open ssh1099/tcp open rmiregistry1521/tcp open oracle8001/tcp open vcom-tunnel9001/tcp open tor-orport9002/tcp open dynamid
[Code]......
View 5 Replies
View Related
Mar 11, 2013
Is it better to uninstall LMS 4.0 completely and then install LMS 4.2 or could I do a direct upgrade?. I've heard the db tables etc. have changed a lot and might cause problems for a direct upgrade.
View 5 Replies
View Related
Jan 4, 2012
I am trying to populate the LMS 4.1 components to ACS.
View 2 Replies
View Related
