We had a planned power outage and our cisco ASA 5508 now seems to have stopped working - or letting us login anyway. Prior to the power cut all that happened was that the domain servers were shutdown and then restarted
Now, when I try to connect via ASDM I get the error 'Unable to launch device manager from <ip of asa>' and the java console shows the error 'java.net.ConnectException: Connection refused: connect'
If I try to ssh in to the device I get the error 'Unable to negotiate with <ip> port 22: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1'
I can ssh using this method I found online: ssh -oKexAlgorithms=+diffie-hellman-group14-sha1 -oHostkeyAlgorithms=+ssh-rsa user@<ip> and I can see the running config looks the same as before the reboot!
So I'm baffled and a bit stressed as it seems to be blocking our vpn access as well now, even though the radius server shows granted access the users see the message 'User not authorised for AnyConnect Client access' after entering their details and adding their MS MFA code
So what could have caused this just from a reboot? The config was saved before the reboot so its not like we're missing a change (its been working for years with pretty much the same config)
I can't access the https://ip/admin page either now, the 'http server enable' command also doesn't seem to work anymore either
↧