[cisco-voip] IP Phone SSH
Wes Sisk
wsisk at cisco.com
Thu May 28 11:18:05 EDT 2009
The is 0 external documentation for the interface. Thus anytime it is
needed complete instructions must be provided. Nothing there is
"standard" and is subject to change at any point. For these reasons the
password isn't exactly common knowledge.
/Wes
On Wednesday, May 27, 2009 3:58:55 PM, Tanner Ezell
<tanner.ezell at gmail.com> wrote:
> Nope, just playing around with the phone interface. Does it require
> TAC to get past the second login?
>
> On Wed, May 27, 2009 at 12:53 PM, Wes Sisk <wsisk at cisco.com
> <mailto:wsisk at cisco.com>> wrote:
>
> Ahh, this is the confusing part. There are 2 levels of
> authentication.
>
> the first is ssh authentication. this authenticates you on the
> network interface. then you have to login to the phone. You
> successfully authenticated via ssh and reached the 2nd login
> prompt. Are you working with TAC to diagnose a specific problem?
> If so, they should provide the steps to access the phone and
> enable necessary debugs.
>
> /Wes
>
>
> On Wednesday, May 27, 2009 3:15:31 PM, Tanner Ezell
> <tanner.ezell at gmail.com> <mailto:tanner.ezell at gmail.com> wrote:
>> I checked the configuration file, it shows the user I created and
>> verified that its downloading the config. when i login with
>> testing/testing you get as seen below.
>>
>> downloaded and verified config locally
>> ---
>> C:\>tftp -i 10.x.x.x GET SEP001795CDDB5C.cnf.xml
>> Transfer successful: 5999 bytes in 1 second, 5999 bytes/s
>>
>> C:\>findstr /I ssh SEP001795CDDB5C.cnf.xml
>> <sshUserId>testing</sshUserId>
>> <sshPassword>testing</sshPassword>
>> (passwords are obviously
>> dump from tftp trace showing file downloaded successfully
>> -----
>> Line 4885: 05/27/2009 11:59:00.455 TFTP|
>> NetworkService::asyncTFTPFileSend[0xb1816e78:1448:10.x.x.x:49239]
>> Serving File[SEP001795CDDB5C.cnf.xml]
>> Socket[23]|<CLID::x-Cluster><NID::10.x.x.x><LVL::Significant><MASK::0004>
>> Line 4895: 05/27/2009 11:59:00.506
>> TFTP|NetworkService::asyncTFTPReadReq[0xb1816e78:1448:10.x.x.x:49239],
>> Transfer completed. File[SEP001795CDDB5C.cnf.xml]
>> Socket[23]|<CLID::VHA20CCM01-Cluster><NID::10.x.x.x><LVL::Significant><MASK::0004>
>>
>> dump from putty
>> -----
>> login as: testing
>> testing at 10.x.x.x <mailto:testing at 10.x.x.x>'s password:
>> login: testing
>> password:
>>
>> Invalid Username/Password Entry.
>> login:
>>
>>
>>
>> On Wed, May 27, 2009 at 10:49 AM, Wes Sisk <wsisk at cisco.com
>> <mailto:wsisk at cisco.com>> wrote:
>>
>> In that case TFTP service is not picking up the change from
>> the database. This is likely a problem with change
>> notification. Quickest answer - restart TFTP service then
>> reset phone. If that still does not do it then verify you
>> are pointing to the proper TFTP server and security/CTL files
>> are not getting in the way.
>>
>> You can confirm if the TFTP service has generated proper
>> config file. Sample from my windows PC:
>>
>> C:\Documents and Settings\wsisk\temp>tftp -i 14.48.40.56 GET
>> SEP001BD5846D80.cnf.xml
>> Transfer successful: 7283 bytes in 1 second, 7283 bytes/s
>>
>> C:\Documents and Settings\wsisk\temp>findstr /I user
>> SEP001BD5846D80.cnf.xml
>> <sshUserId>mysshuser</sshUserId>
>>
>>
>> /Wes
>>
>>
>> On Wednesday, May 27, 2009 1:41:16 PM, Tanner Ezell
>> <tanner.ezell at gmail.com> <mailto:tanner.ezell at gmail.com> wrote:
>>> I reset and verified it downloaded the TFTP after reset, no go.
>>>
>>> On Wed, May 27, 2009 at 10:38 AM, Wes Sisk <wsisk at cisco.com
>>> <mailto:wsisk at cisco.com>> wrote:
>>>
>>> you have to reset the phone after making that config
>>> change. Phone has to successfully TFTP config file from
>>> CM. Most likely your phone is not successfully
>>> completing TFTP.
>>>
>>> /Wes
>>>
>>>
>>> On Wednesday, May 27, 2009 1:02:25 PM, Tanner Ezell
>>> <tanner.ezell at gmail.com> <mailto:tanner.ezell at gmail.com>
>>> wrote:
>>>> Hey all
>>>>
>>>> I'm playing around with one of our IP phones attempting
>>>> to ssh into it, however the username/password I setup
>>>> on the device configuration doesn't seem to have any
>>>> effect. Am I missing something?
>>>>
>>>> I checked related threads, there was one but it did not
>>>> go over how to actually do it.
>>>> ------------------------------------------------------------------------
>>>>
>>>> _______________________________________________
>>>> cisco-voip mailing list
>>>> cisco-voip at puck.nether.net <mailto:cisco-voip at puck.nether.net>
>>>> https://puck.nether.net/mailman/listinfo/cisco-voip
>>>>
>>>
>>>
>>
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20090528/ed8916a6/attachment.html>
More information about the cisco-voip
mailing list