ASR 9 K to 7609 ssh login issue
ASR 9 K to 7609
While ssh display error below. Please suggest what could be the problem
% Error in Connect v4 - connection refused
Double post.
Go HERE.
Tags: Cisco Support
Similar Questions
-
in PIX with SSH connection issues
Hello
I have a PIX 506 running OS 6.2 (2) which is located in a demilitarized zone known as the PIX from the outside. It's behind an another PIX506 (PIX inside). The two PIX have Ganymede + configured for authentication of the connection.
Last week the outdoor PIX crushed physically and I replaced it with a spare PIX part and he completely reconfigured.
Now I can't connect to this outside PIX using SSH, despite the list of access inside PIX is correct and can SSH and Ganymede +. However, I can telnet to it.
I use Putty to connect and when I start the session SSH from the PIX, the login window appears and disappears immediately without having the time to do anything myself.
Any help would be greatly appreciated. Thanks in advance.
A.G.
##################################################
Inside PIX config:
access-list inside allow TCP Company-Interior-Net 255.255.255.0 host outsidepix-Interior-interface eq ssh
list Company-Interior-Net 255.255.255.0 access inside permit tcp host eq telnet interface-inside-outsidepix
access-list inside allow the ICMP messages to echo DMZNet 255.255.255.192 Company-Interior-Net 255.255.255.0
access-list inside allow Company-Interior-Net icmp 255.255.255.0 DMZNet 255.255.255.192 - response to echo
dmzacl list of access allowed icmp echo host outsidepix-Interior-interface company-Interior-Net 255.255.255.0
dmzacl list of access allowed icmp host outsidepix-Interior-interface company-Interior-Net 255.255.255.0 - response to echo
access-list permits dmzacl tcp host outsidepix-Interior-interface host Ganymede-server1 eq Ganymede
access-list permits dmzacl tcp host outsidepix-Interior-interface host Ganymede-server2 eq Ganymede
The outdoor PIX config:
GANYMEDE + Protocol Ganymede + AAA-server
AAA-server GANYMEDE + (inside) host Ganymede-server1 1234 timeout 10
AAA-server GANYMEDE + (inside) host Ganymede-server2 1234 timeout 10
RADIUS Protocol RADIUS AAA server
AAA-server local LOCAL Protocol
Console telnet authentication GANYMEDE AAA +.
the AAA console ssh GANYMEDE authentication +.
AAA authentication enable console GANYMEDE +.
Telnet Company-Interior-Net 255.255.255.0 inside
Telnet timeout 5
SSH-company-Interior-Net 255.255.255.0 inside
SSH DMZNet 255.255.255.192 inside
SSH timeout 5
did you follow the steps to configure ssh? the domain name and host name is defined on it? CA has generated you any rsa... to create the encryption keys?
-
Hi all
I use APEX 5.0.1 and created a custom authentication based on the table.
In the table, there are USER ID and CUSTOMER ID columns.
For example: Userid = USERTWO
CUSTOMER ID = CLIENT-ABC
When we connect to the application usually in the upper left corner, it will display the USER ID that currently connect in the application as below.
Issues related to the:
1 is it possible instead to display the USER ID, I want to display the CUSTOMER ID? If so, how?
2. when we logout, is possible that we can close the page instead of back to the page to login or to redirect to another URL?
Please give me some advice / guidance on these issues.
Thanks and regards,
Troy.
(1) content here is defined in the list of navigation bar, located in the shared components. This entry will probably be user & APP_USER. as the label if you can change this to your own domain.
(2) would be probably a few ways to do this, even if I never tried. The logout url is defined in the current authentication scheme. You can change this option to include a request in the login page that will trigger a dynamic action to close the window.
That is to say:
f? p = &: LOGIN::CLOSEME AUTH_APP.
Then add DA with condition
: ASK = "CLOSEME."
-
SSH reconciliation issue after application BP4 for OIM11g
Hi all
I am facing a problem trying to reconcile users between OIM11g and a resource target SSH. In particulare, all worked well before asking the BP4 OIM11g. I have a custom rule of reconciliation that serves as a Mapper betweek custom field of a user called SSH, in which I enter specific target account to reconcile, and the Users.UserLogin of the SSH form field. The rule is expressly defined, via the console design, like "SSH is equal to Users.UserLogin. Now when I run the reconciliation of target user SSH for the specific host, OIM11g creates all the events of reconciliation but does not bind the target accounts IDM users (not related to any user).
Does anyone know how can I fix this problem? Read the newspaper it seems to be without a single error.
Thank you very much.
Kind regards
Giuseppe.
Published by: Giuseppe on November 14, 2012 14:35Hey, Giuseppe.
There is an open bug related to this issue: Bug 14493217 and note ID 1494023.1
PLS, go to metalink and check it out.
I hope this helps.
Leoncio Thiago. -
Limit SSH Login failed for N3024P
Greetings,
I tried to look in the documentation and here, but so far I have not found an answer.
We use Dell N3024P v6.3.0.16 running switches. Our problem is that we must limit the number of attempts to connect SSH 3 tests until it resets and enter their username again. Currently, it will allow the 6 trials before the attempt to close. Is there a setting that will allow that we could not meet?
Thanks for your time,
Robert Baker
The only command I came across is used when authenticating via a RAIDUS server.
# authentication event failure retry (max attempts)Page 927: http://dell.to/1SVu3Bp
I wasn't able to find a command to control the maximum attempts for local authentication.
-
BlackBerry Z30 Blackberry Z30 e-mail ID login issue (red exclamation)
I changed/created new connection (address e-mail/password) on the site Web de Blackberry information. Then I security wiped the phone back. During the procedure for setting up the phone, I was with my Blackberry ID required to connect, and because I had the function of protection against theft of Blackberry Protect on. The problem is that it does not recognize my login details, even if they are correct and it displays a red exclamation mark at the end of the electronic part. He tried about four times without success.
I tried to re - download the firmware with link to Blackberry, but after a while, he stops and the phone starts and remains in the connection configuration page. Then I get an opinion on link Blackberry, saying: he can't go any further until I complete the installation. More now am stuck on the installation page, and cannot use the phone.
Any help much appreciated.
Problem solved now. I used autoloader and all is good now.
-
I need to use the Apps at home to complete the work. Summer said it was possible using the ID - my DL, install but show as the trial apps. I connect successfully and have access to cloud, but only of trial Apps. Did I miss something?
Your subscription to cloud shows correctly on your account page?
If you have more than one email, you will be sure that you use the right Adobe ID?
https://www.adobe.com/account.html for subscriptions on your page from Adobe
.
If Yes
Sign out of your account of cloud... Restart your computer... Connect to your paid account of cloud
-Connect using http://helpx.adobe.com/x-productkb/policy-pricing/account-password-sign-faq.html
-http://helpx.adobe.com/creative-cloud/kb/sign-in-out-creative-cloud-desktop-app.html
-http://helpx.adobe.com/x-productkb/policy-pricing/activation-network-issues.html
-http://helpx.adobe.com/creative-suite/kb/trial--1-launch.html
-ID help https://helpx.adobe.com/contact.html?step=ZNA_id-signing_stillNeedHelp
-http://helpx.adobe.com/creative-cloud/kb/license-this-software.html
.
If no
This is an open forum, Adobe support... you need Adobe personnel to help
Adobe contact information - http://helpx.adobe.com/contact.html
Chat/phone: Mon - Fri 05:00-19:00 (US Pacific Time)<=== note="" days="" and="">
-Select your product and what you need help with
-Click on the blue box "still need help? Contact us. "
-
APEX workspace login issue because of restriction IP address
Hello world!!!
I use Apex 4.2 on Oracle database 11g on Linux platform. We use the Glassfish as Middle tier server. To prevent unauthorized access IP address, I connected to the workspace APEX Administator account, and then I went to MANAGE INSTANCE-> SECURITY-> SELECT the IP ADDRESS. I entered an IP address (which was a dynamic that I was using Internet via Dongle). Now I couldn't access developer login page and also the login page Admin I get the same IP address of the internet service provider. While the application is accessible anywhere as an end user. Here I could not connect to the workspace as a developer, but can access the application as long as the end user.
I found a solution on the internet and then I tried, but it isn't working. I did following steps to solve the problem of restricted IP address.
1. connect as sysdba
2 Alter session set current_schema = apex_040200
3.
BEGIN
APEX_INSTANCE_ADMIN. SET_PARAMETER ('DISABLE_ADMIN_LOGIN', 'N');
commit;
END;
OUTPUT:-
The procedure runs correctly but when I try to open URL http://Server: 8080/apex GOLD http://Server: 8080/apex/apex_admin. He throws error
HTTP status 404 - not found.
So, please let me know what are the possible solutions.
Hello
Open as Sys and current schema change to apex_40200 and run the following script.
begin
wwv_flow_platform.set_preference( p_preference_name => 'RESTRICT_IP_RANGE',
p_preference_value => null );
end;
/commit;
face problem and other Forum gave this solution, hope it works for you too...
-
Microsoft account login issues.
I just bought a new Toshiba laptop with win 8. Account Microsoft won't allow access to windows. First of all, the message is that I have the wrong password which changed several times only now the message is this account does not exist. I can get to the local account but no email so explore away. I must have done something wrong on the Setup, but what. My next is to call the account Microsoft support restarting this computer. Help please
Hello
With the help of Toshiba, check their documentation online and ask questions in the forums on
known problems. As OEM Toshiba is responsible for the proper functioning of the
hardware and Windows. So whatever the cause it is theirs to solve. A step you
could take is to return system to factory plug - a complete reset.Toshiba - Forums
http://laptopforums.Toshiba.com/Toshiba - Contacts
http://www.CSD.Toshiba.com/cgi-bin/TAIS/support/JSP/navShell.jsp?CF=su_contactToshiba - drivers - access your model
http://www.CSD.Toshiba.com/cgi-bin/TAIS/support/JSP/home.jsp?NAV=downloadToshiba - Support
http://www.CSD.Toshiba.com/cgi-bin/TAIS/support/JSP/home.jsp======================================
If you have a problem with the Microsoft Account itself:
For any connection with Microsoft Account, Live ID, Hotmail or Outlook.com problem:
http://Windows.Microsoft.com/en-us/Windows-Live/ID-supportI hope this helps.
Rob Brown - Microsoft MVP<- profile="" -="" windows="" expert="" -="" consumer="" :="" bicycle="" -="" mark="" twain="" said="" it="">
-
Hello
I have configured the Cisco ASA5510 firewall, but I am facing the problem with ssh login, I gave ssh for inside and outside access, but I'm getting "server... error" I activated LOCAL for ssh and HTTP authentication. and I am able to developed device over HTTP by using ASDM, but not not be able to access from the outside.
Please find the configuration
Thanks in advance
concerning
Aurélie
ASA Version 8.2 (1)
!
hostname ASA5510
domain default.domain.invalid
activate the encrypted password of Nbxmt7LFbcxtLo.o
2KFQnbNIdI.2KYOU encrypted passwd
names of
name 10.251.38.0 SAP_remote
!
interface Ethernet0/0
nameif inside
security-level 100
IP 192.168.1.1 255.255.255.0
!
interface Ethernet0/1
nameif outside
security-level 0
IP xxx.xxx.xxx.xxx 255.255.255.252
!
interface Ethernet0/2
Shutdown
No nameif
no level of security
no ip address
!
interface Ethernet0/3
Shutdown
No nameif
no level of security
no ip address
!
interface Management0/0
Shutdown
No nameif
no level of security
no ip address
!
passive FTP mode
DNS server-group DefaultDNS
domain default.domain.invalid
inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 SAP_remote 255.255.255.128
outside_cryptomap to access ip 192.168.1.0 scope list allow 255.255.255.0 SAP_remote 255.255.255.128
outside_cryptomap_1 to access ip 192.168.1.0 scope list allow 255.255.255.0 SAP_remote 255.255.255.128
pager lines 24
Enable logging
asdm of logging of information
Within 1500 MTU
Outside 1500 MTU
ICMP unreachable rate-limit 1 burst-size 1
ICMP allow any inside
ICMP allow all outside
ASDM image disk0: / asdm - 621.bin
don't allow no asdm history
ARP timeout 14400
Global 1 interface (outside)
NAT (inside) 0-list of access inside_nat0_outbound
NAT (inside) 1 0.0.0.0 0.0.0.0
Route outside 0.0.0.0 0.0.0.0 115.115.169.241 1
Timeout xlate 03:00
Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-registration DfltAccessPolicy
No snmp server location
No snmp Server contact
Server enable SNMP traps snmp authentication linkup, linkdown cold start
Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
Crypto ipsec transform-set ESP-AES-128-SHA aes - esp esp-sha-hmac
Crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac
Crypto ipsec transform-set ESP-AES-256-SHA 256 - aes - esp esp-sha-hmac
Crypto ipsec transform-set ESP-AES-128-MD5-esp - aes esp-md5-hmac
Crypto ipsec transform-set ESP-DES-SHA esp - esp-sha-hmac
Crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
Crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
Crypto ipsec transform-set ESP-3DES-MD5-esp-3des esp-md5-hmac
life crypto ipsec security association seconds 28800
Crypto ipsec kilobytes of life - safety 4608000 association
card crypto outside_map 1 match address outside_cryptomap_1
outside_map 1 set of peer XXX.XXX crypto card. XXX.20
card crypto outside_map 1 the value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5
card crypto outside_map 2 match address outside_cryptomap
card crypto outside_map 2 pfs set group5
outside_map 2 peer XXX.XXX crypto card game. XXX.20
card crypto outside_map 2 the value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5
outside_map interface card crypto outside
crypto ISAKMP allow inside
crypto ISAKMP allow outside
crypto ISAKMP policy 10
preshared authentication
3des encryption
sha hash
Group 5
lifetime 28800
Enable http server
http 0.0.0.0 0.0.0.0 inside
http 0.0.0.0 0.0.0.0 outsde
SSH 0.0.0.0 0.0.0.0 inside
SSH 0.0.0.0 0.0.0.0 outsde
Telnet 0.0.0.0 0.0.0.0 inside
Telnet timeout 5
SSH timeout 5
Console timeout 0
a basic threat threat detection
Statistics-list of access threat detection
no statistical threat detection tcp-interception
username test1234 encrypted password /FzQ9W6s1KjC0YQ7
username, password cisco1234 5sSb... e9ZNWMmk2e encrypted privilege 15
type of remote control-p2p-vpn tunnel-group ipsec-l2l
tunnel-group Remote-p2p-vpn ipsec-attributes
pre-shared-key *.
tunnel-group XXX.XXX. XXXX.20 type ipsec-l2l
tunnel-group XXX.XXX. XXXX.20 ipsec-attributes
pre-shared-key *.
!
class-map inspection_default
match default-inspection-traffic
!
!
type of policy-card inspect dns preset_dns_map
parameters
message-length maximum 512
maximum message length automatic of customer
Policy-map global_policy
class inspection_default
inspect the preset_dns_map dns
inspect the ftp
inspect h323 h225
inspect the h323 ras
inspect the netbios
inspect the rsh
inspect the rtsp
inspect the skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect the tftp
inspect the sip
inspect xdmcp
!
global service-policy global_policy
context of prompt hostname
Cryptochecksum:83eab0b7ae2d2d9e74f8ea0b005076ea
: end
Hello
You issue the command
ASA (config) # crypto key generate rsa 2048 module
So that you can use SSH.
EDIT: I suggest narrowing of the source address from where you can connect to the ASA from 'outside' if possible.
-Jouni
-
Impossible login sites after you delete cookies in Firefox
I get in a loop of redirection of connection, it happens with Tumblr and Hotmail. I can not connect other browsers either. My acceptance of cookies and the acceptance of cookies from Third Parties are enbaled. Still no dice, but I can connect other computers very well.
Clear the cache and cookies from sites that cause problems.
"Clear the Cache":
- Tools > Options > advanced > network > content caching Web: 'clear now '.
'Delete Cookies' sites causing problems:
- Tools > Options > privacy > Cookies: "show the Cookies".
You can check the live.com on the subject site permissions: permissions page via the address bar.
If clearing cookies doesn't work, then it is possible that the cookies.sqlite file that stores the cookies is corrupted.
Rename (or delete) cookies.sqlite (cookies.sqlite.old) and delete other files to present as cookie cookies.sqlite - journal in the profile folder of Firefox in the case where the cookies.sqlite file has been corrupted.
-
By connecting to facebook lately (in the usual help of the login page for the Canada facebook or facebook.com), opens the usual page, but then a dialog box appears stating "you must be logged" which also provides form for email and password boxes. It seems that my login pages are redirected as I'm stuck using the original page to connect. When I chose "run as Administrator" for firefox, has not stopped this dialog box that appears and I am able to use the initial login page. I wonder what might have been past & if/why run firefox in admin mode has stopped this?
This can be caused by corrupted cookies.
Clear the cache and cookies from sites that cause problems.
"Clear the Cache":
- Tools > Options > advanced > network > storage (Cache) offline: 'clear now '.
'Delete Cookies' sites causing problems:
- Tools > Options > privacy > Cookies: "show the Cookies".
If clearing cookies doesn't help, then it is possible that the cookies.sqlite file that stores the cookies is corrupted.
Rename (or delete) cookies.sqlite (cookies.sqlite.old) and delete other files to present as cookie cookies.sqlite - journal in the profile folder of Firefox in the case where the cookies.sqlite file has been corrupted. -
Disable the root without locking mode login
Hello
How to disable root ssh login without activating the lock mode in esxi 5.1?
Disable root access using the host command line console... Edit the sshd.config file and the... and comment the line allowed root...
Visit this link... so that you can do it easily... Here are step by step... documentation
https://KB.mediatemple.NET/questions/713/how+do+I+disable+SSH+login+for+the+root+user%3F#DV
Yours, Phillips
-
Issues of file system based ESXi
Happy to RTFM, but I can't find a reference...
When you use vifs.pl to - put a file in an ESXi 4.1 the machine, where it is going?
I recently downloaded custom SSL cert/key and I was very confused when the instructions said to download/host/ssl_key and/host/ssl_cert when there doesn't seems to be a folder named 'host' at the root of the filesystem such as seen by a ssh login. In addition, I could not find "ssl_key" or "ssl_cert" using find:
# find /-name ssl_key
#
Do "vifs.pl - set" write files to a different file in total system?
---
Another thing that I find confusing is the output of "mountain". Why does mount not show mounted filesystems as data warehouses? They appear in/vmfs/volumes and/vmfs/volumes appears in the list of editing as a filesystem of type FCR, but nobody rides.
Thank you.
With vivid, you can access files) 1 datastore files/tmp) 2 and 3) ' host '. The 'host' files are not all in a specific folder. Rather the configuration file webAccessibleConfigFiles.xml dictacts what are system files are exposed alive and other tools API. The following link shows a list of these files: http://www.vm-help.com/esx/esx3i/esx_3i_rcli/vifs.php in your case, you will notice that the command of vivos specific files you are mapped to the appropriate files in/etc/vmware/ssl /.
-
Via the command script / Sudoers question
Hello MacGeniuses.
After trying to understand the solution for my part, I only managed to come up with a partial solution.
Main question:
I want to use an alias of office to shut down the computer. The reason is that I wish to first run another command without having to open a terminal every time.
And also, I don't want to enter a password every time.
Based on my homework, I created a text file, it gave an extension .command, did a chmod + x and then tried to use to run the following commands, both starting with a space to keep them out of the history of the orders:
Echo password | sudo nvram SystemAudioVolume = 80%
Echo password | sudo shutdown-h now
The commands work fine if I already have a sudo in terminal of this session. If I don't then I'm invited my password.
I even tried to add me in the sudoers file (in the last line) but that did not help:
Steve ALL = (ALL) NOPASSWD: / sbin/poweroff, /sbinreboot, / sbin/shutdown, / usr/sbin/nvram
When it comes to Linux type stuff, I am just a monkey-see, monkey-do person, so if you give me good advice, I can come back with a response like, "What is a power cord?" Please be as gentle as possible.
Secondary issue:
Everytime I open terminal I get a list of stuff like indicated below (there are several, I just cut and paste one of them). Anyone know how to stop this?
[Restored 22 July 2016, 20:54:32]
Last login: Friday, July 22, 20:53:18 on ttys000
Session restore: Fri Jul 22 20:53:56 EDT 2016
Steves - iMac:Desktop Steve$ chmod + x Shutdown.command
Steves-output iMac:Desktop Steve$
Logout
Saving session...
.. .saving story... truncate the history files...
... done.
[Process]
There is a way. It is NOT the only way.
Google "ssh passwordles".
Set up your account without password ssh logins.
Now, take the ~/.ssh/id_*.pub file and put the contents of the file in the "/var/root/.ssh/authorized_keys of the root file (you will need to use sudo to perform this change)."
The id_*.pub file will probably be id_dsa.pub or id_rsa.pub, but it could be slightly different.
Now, you can
SSH root@localhost shutdown-h now
and you will not have a password.
NOTE: Make sure your id_ * (not the .pub file), which is your private key NEVER leaves your control and copies are not where someone else can get his hands on it. If someone else gets your id_ file *, they can connect to your system with a password.
NOTE 2: There are ways to put a password your ssh keys and store them in your keychian. Google: "ssh password in keychain". It would be safer than no password, but you will still need to keep control of your keychain file. It's always something
Maybe you are looking for
-
How can I DELETE an icon from my home page?
I touched the CarDock icon and he moved to my opening screen. Now, I can't get rid of it. Tried to touch again, but he just put another one up there! I just got my phone and the instructions are pretty VAGUE so far! So, how to remove an icon from the
-
I got errors 0xC004D401 and MS10-070 and MS11-025 after doing updates in Windows Vista
I have windows vista home... I had two 'holes' of security, and I was cleaning my computer a few nights ago and I'm awake and THE WHOLE THING WAS wiped OUT! Just before I fell asleep, I was reading it says updating security MS10-070 - 3.5 and Microso
-
How to block certain emails to be deleivered
How can I stop certain e-mail to get deleivered
-
For some reason, everything on my screen has increased in size. Start bar to toolbars of background etc. It is very annoying and I want so he can return to the normal size. How to make? [Windows Vista Home Premium 64-bit]
-
e-mail Outlook for windows 7does won't keep me signed in, I save my e-mail and security question to keep me signed in but after that I have close and open later he always wants me to re sign in? ... Joseph thanks, even after signing, constantly check