No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Log Reference

CloudEngine 8800, 7800, 6800, and 5800 V200R005C00

This document provides the explanations, causes, and recommended actions of logs on the product.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
SSH/5/SSH_USER_LOGIN_FAIL_SCHD

SSH/5/SSH_USER_LOGIN_FAIL_SCHD

Message

SSH/5/SSH_USER_LOGIN_FAIL_SCHD:Failed to login through SSH [failed_count] time(s) in last [time_gap] minute(s).

Description

This log occur when SSH user login fails multiple time in a time gap of one minute.

Parameters

Parameter Name Parameter Meaning

failed_count

Authentication failure count.

time_gap

Time gap in minutes.

Possible Causes

The possible causes are as follows:

Cause 1:

The SSH user does not exist.

Cause 2:

RSA, DSA, or ECC key does not exist.

Cause 3:

The user name or password is incorrect.

Cause 4:

Service is not enabled.

Cause 5:

Maximum sessions are reached.

Cause 6:

A deny rule is set for the IP address in ACL.

Procedure

  1. Run the display ssh user-information command to view the configuration of all the SSH users.

    • If the SSH user is not configured, run the ssh user command to create an SSH user.
    • If the SSH user is configured, go to other steps.

  2. Run the display rsa local-key-pair public, display dsa local-key-pair public, display ecc local-key-pair public command to view the public key in the local key pair.

    • If the RSA, DSA, or ECC key is not configured, run the rsa local-key-pair create, display dsa local-key-pair public, ecc local-key-pair create command to generate the local host key pair and the server key pair.
    • If the RSA, DSA, or ECC key is configured, go to other steps.

  3. Ensure that the user name and password is correct.
  4. Ensure that the services are enabled.
  5. Ensure that the maximum sessions are not reached.
  6. Run the display acl command to review ACL rules.

    • If the user IP address matches a rule with the behavior of deny, run the acl command to enter the ACL view and run the rule command to change the behavior from deny to permit.
    • If the user IP address does not match a rule with the behavior of deny, go to other steps.

  7. Collect information about configurations, and log messages, and then contact technical support personnel.
Translation
Download
Updated: 2019-04-20

Document ID: EDOC1100039602

Views: 114195

Downloads: 85

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next