[rancid] Re: Rancid with Cisco ACS 4.x Issue

Mike Ashcraft mashcraft at omniture.com
Wed Dec 31 18:29:40 UTC 2008

Your test command line needs some work.  For example, clogin  is trying
to connect to the routers 'show clock' and 'log'.


Start by removing all spaces between the -c and the command string.  You
also need to set a value for the timeout or remove the -t option.   Your
output redirection needs some work as well, you can test without it.


For example:


/var/lib/rancid/bin/clogin -t30 -c'show clock' test-c3560-48-sw.mydomain


Hope that helps,







From: rancid-discuss-bounces at shrubbery.net
[mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Oglum AVD
Sent: Tuesday, December 30, 2008 11:14 PM
To: rancid-discuss at shrubbery.net
Subject: [rancid] Re: Rancid with Cisco ACS 4.x Issue


Here's latest update on this;


/var/lib/rancid/bin/clogin -t -c  'show clock'
test-c3560-48-sw.mydomain.com log 2>&1 
show clock

Error: no password for show clock in /root/.cloginrc.
spawn ssh -c 3des -x -l ddnetman test-c3560-48-sw.mydomain.com
Error: TIMEOUT reached log
Error: no password for log in /root/.cloginrc


Password Verification:
nano .cloginrc
add autoenable *.mydomain.com 1
add user *.mydomain.com testacc
add password *.mydomain.com password
add method *.mydomain.com {ssh}


Test ssh from this device to switch;
root at 804:~# ssh -l testacc test-c3560-48-sw.mydomain.com
testacc at test-c3560-48-sw.mydomain.com's password: 
test-c3560-48-sw.mydomain.com# <http://test-c3560-48-sw.mydomain.com>
show clock
22:07:13.168 PST Tue Dec 30 2008
test-c3560-48-sw.mydomain.com# <http://test-c3560-48-sw.mydomain.com> 
it works OK.


using Cisco ACS 4.x and ACS local account.

Any suggestion?



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081231/2bd2b514/attachment.html 

More information about the Rancid-discuss mailing list