You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@guacamole.apache.org by "Yousuf, Zeeshan" <ze...@amazon.ae.INVALID> on 2021/09/15 05:48:50 UTC

SSH session prompting user ID/PW on Cisco WLC 2504

Hello All,

I need some assistance to iron out an issue I'm having with providing SSH connections for my Cisco WLC 2504 version 8.2.

Issue:
There is a radius server configured in my network, which authenticates the ssh sessions for cisco devices such as switches 3800 series. However specifically with Cisco WLC 2504, even though userid and password is specified for the connection in guacamole, WLC SSH session still prompts for the userID and password. After researching, it's a known bug mentioned here<https://quickview.cloudapps.cisco.com/quickview/bug/CSCve45024> and here<https://community.cisco.com/t5/wireless/promoting-two-times-username-in-wlc-while-login-through-cli/td-p/3384450> on WLC 2504 which is supposed to have been fixed in version 8.6. However, WLC 2504 is EoL and no longer supporting AireOS version 8.6.

Question:
Is there any hack/tweak in Guacamole where Guacamole can automatically provide the userID and Password once ssh session is opened and prompts for entering userid/password?

Appreciate your assistance.
Thanks.

Re: SSH session prompting user ID/PW on Cisco WLC 2504

Posted by Mike Jumper <mi...@glyptodon.com>.

On Tue, Sep 14, 2021, 22:49 Yousuf, Zeeshan <ze...@amazon.ae.invalid>
wrote:

> Hello All,
>
>
>
> I need some assistance to iron out an issue I’m having with providing SSH
> connections for my Cisco WLC 2504 version 8.2.
>
>
>
> Issue:
>
> There is a radius server configured in my network, which authenticates the
> ssh sessions for cisco devices such as switches 3800 series. However
> specifically with Cisco WLC 2504, even though userid and password is
> specified for the connection in guacamole, WLC SSH session still prompts
> for the userID and password. After researching, it’s a known bug mentioned
> here <https://quickview.cloudapps.cisco.com/quickview/bug/CSCve45024> and
> here
> <https://community.cisco.com/t5/wireless/promoting-two-times-username-in-wlc-while-login-through-cli/td-p/3384450>
> on WLC 2504 which is supposed to have been fixed in version 8.6. However,
> WLC 2504 is EoL and no longer supporting AireOS version 8.6.
>
>
>
> Question:
>
> Is there any hack/tweak in Guacamole where Guacamole can automatically
> provide the userID and Password once ssh session is opened and prompts for
> entering userid/password?
>

No, not for SSH. This is the way things are done for Telnet, but SSH is
very well defined for providing a username/password.

The link above notes that the issue is due to the SSH implementation not
truly implementing SSH, but wrapping a Telnet session within SSH. Perhaps
you could connect with Telnet directly? You could then rely on the
Telnet-specific username/password prompt detection.

- Mike