User Cannot Log Into Switch; Verifying User Login With System Messages Using Device Manager - Cisco 9134 - MDS Multilayer Fabric Switch Troubleshooting Manual

Chapter 18 Troubleshooting Users and Roles
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
•
•
•
•
•

User Cannot Log into Switch

Symptom
Table 18-1 User Cannot Log into Switch
Symptom Possible Cause
User cannot log into Weak password configured at the AAA
the switch. server.
User name is a restricted word or all
numeric.
User account has expired.

Verifying User Login with System Messages Using Device Manager

To configure the switch logging to capture system messages when a user attempts to log into a switch,
follow these messages:
Choose Logs > Syslog > Setup and select the Severity Levels tab.
Step 1
Select debug from the Severity Level drop-down menu for auth, authPriv, and aaad. Click Apply.
Step 2
This sets the switch to log debug information for these facilities.
OL-9285-05
User Cannot Access Certain Features, page 18-8
User Has Too Much Access, page 18-10
User Cannot Configure Some VSANs, page 18-10
User Cannot Configure E Ports, page 18-11
Unexpected User Displayed in Logs, page 18-12
User cannot log into the switch.
Solution
Create a stronger password. See the
section on page 18-1 for guidelines on strong passwords.
Change your user name. See the
page 18-1 for guidelines on allowed user names.
Choose Switches > Security > Users in Fabric Manager to
view the user account expiration date.
Or use the show user-account CLI command to verify the
account expiration.
Recreate the user if necessary.
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
User and Role Issues
"User Accounts"
"User Accounts" section on
18-5