Wiped two older 5512-X's and started the process of updating their software.
Originally I wasn't able to get to the ASA via CLI or ASDM. CLI is resolved, still having issues with ASDM.
Upgraded OS to 9.8(4)
Upgraded Device Manager to 7.6(2)150
System image: disk0:/asa984-smp-k8.bin
asdm image: disk0:/asdm-762-150.bin
aaa authentication ssh console LOCAL
aaa authentication http console LOCAL
aaa authentication login-history
http server enable
http 192.168.1.0 255.255.255.0 management
user-identity default-domain LOCAL
ssh 192.168.1.0 255.255.255.0 management
ssh version 2
ssh key-exchange group dh-group1-sha1
to make matters more interesting, I set the username/pass to the base admin/cisco with level 15 privileges and SSH tells me that the password is incorrect.
What the heck is going on here?
I have full console access, but only just found that I have no other access while trying to upgrade Firepower to the newest patch.
Seeing the other tread from years ago about this, made a change:
ssl cipher default custom "AES128-SHA:DES-CBC3-SHA"ssl cipher tlsv1 custom "AES128-SHA:DES-CBC3-SHA"ssl cipher dtlsv1 custom "AES128-SHA:DES-CBC3-SHA"
This had no effect.
For CLI it seems what was missing was aaa authentication ssh console LOCAL
Still no on ASDM.
No comments:
Post a Comment