Customer reported one issue, client cannot login device via web, also cannot use ssh, before the issue happened , customer did some configuration change .now customer only can use console port connect device , customer need Huawei solve this issue asap.
When use web login to device has below error message:
First I let the the customer help to login device via console, I can check the configuration and authentication failed reason, so I can use debugging to locate the root cause.
I check the online-failed-reason link below :
Then I check customer configuration:
local-user admin password irreversible-cipher xxxxx
local-user admin privilege level 15
local-user admin service-type ssh http
user-interface con 0
set authentication password cipher xxxxx
user-interface vty 0 4
protocol inbound ssh
user-interface vty 16 20
protocol inbound all
Form the configuration we know customer use aaa to authentication vty users, so we need to check the aaa configuration. As we know the domain default_admin used for vty user authentication, and the default_admin use authentication-scheme default.
Configuration is wrong, because customer used none for vty user authentication, we know access device users need to authentication, cannot use none as the access device user authentication-mode .
Change the configuration as bellow:
For access device user authetication, we suggest use local or radius to authentication.