No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade
Knowledge Base

After downgrading version of S5300 switch, Unable to login in switch using user configured in AAA

Publication Date:  2019-07-14  |   Views:  625  |   Downloads:  0  |   Author:  m84065652  |   Document ID:  EKB1000814638

Contents

Issue Description

After downgrading version of S5300 switch from V2R00700SPC500 to V2R00500SPC300 (Higher to Lower version ), Unable to login in switch using user configured in aaa.

 

Handling Process

Before downgrading version of S5300 switch from V2R00700SPC500 to V2R00500SPC300 (Higher to Lower version ), First change the vty interface authentication to “password” using below command

#
user-interface vty 0 4
user privilege level 3
protocol inbound all
authentication-mode password
set authentication password cipher admin@123
#

Note : DO NOT forget to configure command "user privilege level 3", else you will not get privilege to modify configuration .

 

Save configuration and proceed with version downgrade process.

Check the version file in flash using "dir" command

 

To boot switch with required version file run below command

 

 

Check the startup file using command


#
Display startup
#


From output check Next startup system software

 

 

Reboot the switch by command and put Y to save configuration and to take effect new startup software

 


After rebooting Login into the switch using telnet from command line


Now put aaa configuration again


#
aaa
local-user test password cipher Admin@123
local-user test service-type ftp terminal ssh telnet
local-user test privilege level 3
local-user test ftp-directory flash:
#

 

change vty interface authentication mode to “aaa”  AND  remove user privilege level

 

#
user-interface vty 0 4
acl 3002 inbound
authentication-mode aaa
protocol inbound all
undo user privilege level
#

 


Now login into switch using user configured in aaa.

Check version using "Display version" command

 

 

Solution

Change the vty interface authentication mode to “password” before downgrading version of S5300 switch.

After downgrade completed put aaa configuration again and change vty interface authentication mode to “aaa”.



Suggestions

While changing the vty interface authentication mode to “password” DO NOT forget to configure command "user privilege level 3",

else you will not get privilege to modify configuration.