cancel
Showing results for 
Search instead for 
Did you mean: 
Create Post
Level 9

IPAM Cisco Credential Tiemout

I am trying to add a Cisco 6500 as a DHCP server and the IPAM credentials are timing out.  The 6500 is running Tacacs and I have configured an Orion account in our ACS server.  I can log into the 6500 from the server using Putty (SSHv2) but the credentials timeout when using IPAM.  I am able to pull DHCP from a Lab 2811 that is not running TACACS using the local username and password.  I have already regenerated teh ssh keys on the 6500 to ensure they are at least 1024 bit.  Receive the following log in the 6500

Nov  4 15:19:27: SSH2 0: Unexpected mesg type received
Nov  4 15:19:56: SSH2 0: Unexpected mesg type received
Nov  4 15:21:14: SSH2 1: Unexpected mesg type received
Nov  4 15:21:46: SSH2 1: Unexpected mesg type received
Nov  4 15:22:31: SSH2 1: Unexpected mesg type received
Nov  4 15:23:36: SSH2 1: Unexpected mesg type received
Nov  4 15:23:49: SSH2 1: Unexpected mesg type received
Nov  4 15:25:08: SSH2 1: Unexpected mesg type received
Nov  4 15:25:33: SSH2 1: Unexpected mesg type received
Nov  4 15:27:03: SSH2 1: Unexpected mesg type received
Nov  4 15:29:48: SSH2 1: Unexpected mesg type received
Nov  4 15:33:33: SSH2 1: Unexpected mesg type received
Nov  4 15:34:15: SSH2 0: Unexpected mesg type received

0 Kudos
6 Replies
Level 15

lbyoung,

Make sure the account has access to run the following commands:

- ‘show running-config’
- ‘show ip dhcp pool’
- ‘show ip dhcp binding’

You can see this KB for the requirements.

Also, you may try increasing your key length to 2048. See this article from Cisco.

0 Kudos
Level 9

I read the KB and am confused that it states 12.8 is the minimum IOS when 12.4 is the highest version available.  I am running 12.2(18) on the device and show ip dhcp pool is not available.  That command is availbale on a 2811 router I have running 12.4(13).  Do you know what the real minimum version is?

0 Kudos
Level 15

 ‘show ip dhcp pool’ was introduced in IOS 12.2(8)T. Sorry about the confusion, we will get the KB updated. Are you running a GD train?

0 Kudos
Level 9

I am running 12.2(18)SXF8 (Sup2's) and 12.2(18)SXF10 (Sup720's).

0 Kudos
Level 16

Did this ever get answered?

I am running 12.2(31)SGA3 on all my 4500's.  "SH IP DHCP POOL" is not an available command.  I have about 40 of these switches...

0 Kudos
Level 9

No, we decided not to use the IPAM module or local DHCP.  Sorry.

0 Kudos