This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 

SSH: The server has disconnected with an error. Too many authentication failures

SSH: The server has disconnected with an error. Too many authentication failures

Go to solution
Jasper_R
New Contributor

ā€Ž06-13-2019 09:25 AM

Hi Guys,

I got the following error on two VSP 7200 switches. Got it solved on 1 switch by disabling and re-enabling SSH, but on the other switch, this doesn't work.

There are no active sessions, increasing the max-session allowed doesn't help, setting the timeout to 1 second to get "old" (there are none) session closed... But without any luck.

disabling rsa-auth did the trick on the last one, I could re-enable it after first ssh connections was successful.

Any one experience with this? Why does this happen?

Thanks!

Jasper
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
M_Nees
Contributor III

ā€Ž07-30-2021 02:30 PM

Today we can fix the issue with the excellent GTAC support.

Root Cause are empty SSH key files.

 

Deleting them and bouncing SSH will fix the problem.

 

delete .ssh/ssh_rsa.key
    Are you sure (y/n) ? y
delete .ssh/ssh_dss.key
    Are you sure (y/n) ? y

conf t

(config)#no boot config flags sshd
(config)#
(config)#
(config)#no ssh
(config)#
(config)#
(config)#boot config flags sshd
(config)#
(config)#ssh

(config)#sh log file tail
************************************************************************************
                Command Execution Time: Fri Jul 30 16:13:47 2021 CEST
************************************************************************************
1 2021-07-30T16:13:46.994+02:00 XXXXXX CP1 - 0x000d8635 - 00000000 GlobalRouter SSH INFO SSH Host key generation is completed successfully
1 2021-07-30T16:13:40.391+02:00 XXXXXX CP1 - 0x000d8634 - 00000000 GlobalRouter SSH INFO SSH Host Key generation is in progress. SSH connections will not be processed till the key generation completes
1 2021-07-30T16:13:40.390+02:00 XXXXXX CP1 - 0x0000461f - 00000000 GlobalRouter SNMP INFO SSH server enabled
1 2021-07-30T16:13:40.390+02:00 XXXXXX CP1 - 0x000d861c - 00000000 GlobalRouter SSH INFO SSH Server Enabled

View solution in original post

0 Kudos
10 REPLIES 10

Go to solution
Dilraj_Singh_Kh
Extreme Employee

ā€Ž07-23-2021 07:43 AM

Sorry about that. Get a GTAC case opened and get it verified. This happens mostly due to incorrect/expired user or when incorrect cli login source is set on the device.

0 Kudos

Go to solution
M_Nees
Contributor III

ā€Ž07-23-2021 05:26 AM

Hi Dilray,

your posted issue is related to problems with displaying a Login banner within SSH.

That is not realted to my ā€œToo many authentication failuresā€ error.

 

BR,

Matthias

 

 

0 Kudos

Go to solution
Dilraj_Singh_Kh
Extreme Employee

ā€Ž07-23-2021 12:39 AM

See if the below KB relates to your issue:

https://extremeportal.force.com/ExtrArticleDetail?an=000072396

0 Kudos

Go to solution
M_Nees
Contributor III

ā€Ž07-15-2021 03:16 PM

This are the steps to toggle SSH (with VOSS 8.3.1):

 

conf t
application
no iqagent enable
no ssh
ssh

 

But no success - error still the same!

0 Kudos

Go to solution
M_Nees
Contributor III

ā€Ž07-14-2021 03:25 PM

Same Issue with VSP7400 - V8.3.1

As a workaround i enable telnet.

 

It seems that VOSS 8.3.x does not allow restart of SSH Server:

VSP7400:1(config)#no boot config flags sshd
Error: SSH cannot be disabled when IQAgent is enabled.
VSP7400:1(config)#

VSP7400:1(config)#no ssh
Error: SSH cannot be disabled when IQAgent is enabled.
VSP7400:1(config)#

0 Kudos
GTM-P2G8KFN