Hwtacacs authenticates telnet、ssh、ftp service on S9300, telnet and ssh can realize, but ftp system always warns failure.
Jan 1 2008 00:40:43.790.7+02:00 HU1-RND-VIL_S2318 TAC/7/Event:HandleReqMsg: Ses
sion status is connect now.
Jan 1 2008 00:40:44+02:00 HU1-RND-VIL_S2318 %%01FTPS/3/LOGIN_FAIL(l):The us
er failed to log in. (UserName="ftp", IpAddress=10.199.0.18, VpnInstanceName="")
1. Confirm with client, the user name and code is not problematic.
2. Open the debugging switch and check the interaction between switch and server:
debugging hwtacacs all
Signal shows as attachment
The signal state tacace sending to switch is: status:AUTHOR_STATUS_PASS_ADD, that means the authentication passed.the ftp patch field in signal is null FtpDirectory=, and it finds the problem.
3. Add the default ftp patch on the device, the problem solved.
Command: set default ftp-directory
1. User name and code failure
2. There is problem in signal interaction of tacacs server and our company switch.
3. Other peoblem.