I can login via cmd line (PuTTY, SSH2) but when I setup an IOS authentication record in Qualys it fails?
Can anyone point me in the right direction?
Many thansk, Adam
If you setup an authenticated scan against this device, what OS is detected and are you getting an Authentication Failed or Authentication Not Attempted?
I am thinking the underlying OS for ACS isn't being identified as Cisco IOS, which is what keys us off for Cisco Authentication. Let me know the answer to these two questions and I will talk with out vulnerability signatures guys and see if we can figure it out.
It is getting detected as -
Linux 2.4-2.6 / Embedded Device / F5 Networks Big-IP
and then getting Unix authentication failed
I have tried setting up a Unix auth rec but still failing
In looking at the known vulnerabilities for ACS, all of them are detected remotely, I.E. no authentication required, with one exception. Old versions of ACS (2006 timeframe) ran in an embedded windows instance, we have one vulnerability for this that you have to have windows authentication enabled. I believe your 1121 is not one of these ACS devices.
So the answer here is, we do not currently have a need to authenticate to the ACS-1121 as all vulnerabilities we know about are remotely detectable. If you search the KnowledgeBase for Cisco Secure you will see the vulnerabilities I am talking about.
If you'd like to pursue getting authentication to work, please call into the support team and have them run a debug scan with you. I'd be happy to take a look and determine where we're bailing out.
Retrieving data ...