Print

某局点 S5570S-54S-PWR-EI ssh登录闪退

2023-09-28 发表

组网及说明

暂不涉及

问题描述

现场SSH登陆设备异常,开始计费后紧接着就又停止了

*Sep 14 12:17:44:860 2023 Disaster-IRF5950-BB-10.19.254.1 RADIUS/7/EVENT: PAM_RADIUS: RADIUS accounting started.

*Sep 14 12:17:44:860 2023 Disaster-IRF5950-BB-10.19.254.1 RADIUS/7/EVENT: PAM_RADIUS: Sent accounting-start request successfully.

*Sep 14 12:17:44:896 2023 Disaster-IRF5950-BB-10.19.254.1 RADIUS/7/EVENT: PAM_RADIUS: RADIUS accounting stopped.

*Sep 14 12:17:44:897 2023 Disaster-IRF5950-BB-10.19.254.1 RADIUS/7/EVENT: PAM_RADIUS: Sent accounting-stop request successfully.

 

计费停止后login进程退出,给sshd发信号,sshd就接着退出了。

*Sep 14 12:17:44:930 2023 Disaster-IRF5950-BB-10.19.254.1 SSHS/7/MESSAGE: Received packet type 97.

*Sep 14 12:17:44:930 2023 Disaster-IRF5950-BB-10.19.254.1 SSHS/7/EVENT: Channel 0: received SSH2_MSG_CHANNEL_CLOSE

*Sep 14 12:17:44:930 2023 Disaster-IRF5950-BB-10.19.254.1 SSHS/7/EVENT: Close pty: pseudo-terminal-master(-1), pseudo-terminal-sub(36)

*Sep 14 12:17:44:943 2023 Disaster-IRF5950-BB-10.19.254.1 SSHS/7/EVENT: Received SIGCHLD.

 

过程分析

 

从日志看,现网ssh登录走的radius认证,并且认证、授权都成功了,但是在计费的时候有问题

应该是服务器没有下发用户角色, 用户认证成功后发现没有角色又下线了

猜测是radius服务器配置问题,可以先检查一下radius服务器配置。

解决方法

当前分析是用户未授权导致登陆失败,全局配置了role default-role enable network-admin的配置,恢复正常