Symptom
On Catalyst 9300, running 17.9.3 version, not able to login to the device via SSH or telnet but via console I can login with the same credentials.
(base) gkondave@GKONDAVE-M-56JK ~ % ssh -l dnacadmin 10.197.217.181
dnacadmin@10.197.217.181's password:
Permission denied, please try again.
dnacadmin@10.197.217.181's password:
(base) gkondave@GKONDAVE-M-56JK ~ %
On the device getting the following log.
*Dec 1 2023 19:56:11.716 IST: %AAA-3-ACCT_LOW_MEM_UID_FAIL: AAA unable to create UID for incoming calls due to insufficient processor memory
*Dec 1 2023 19:57:00.886 IST: %SSH-5-SSH2_SESSION: SSH2 Session request from 10.65.50.122 (tty = 0) using crypto cipher 'aes128-ctr', hmac 'hmac-sha1' Succeeded
*Dec 1 2023 19:57:11.899 IST: %SSH-5-SSH2_USERAUTH: User '' authentication for SSH2 Session from 10.65.50.122 (tty = 0) using crypto cipher 'aes128-ctr', hmac 'hmac-sha1' Failed
*Dec 1 2023 19:57:11.899 IST: %SSH-5-SSH2_CLOSE: SSH2 Session from 10.65.50.122 (tty = 0) for user '' using crypto cipher 'aes128-ctr', hmac 'hmac-sha1' closed
Conditions
AAA config is done by DNAC and NBAR is enabled.
Workaround
Remove other features or make more memory available for the configuration of the NBAR feature. NBAR at least requires 30MB of the memory.
