<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>
Hi Michael,<BR>
<BR>
You should set up autoenable to 0. As per Rancid .clogin help:<BR>
<BR>
".B add autoenable <router name glob> {[01]}<BR>When using locally defined usernames or AAA, it is possible to have a login which is automatically enabled. This is, that user has enable privileges without the need to execute the enable command. The router's prompt is different for enabled mode, ending with a # rather than a >.<BR><BR>Example: add autoenable * {1}<BR><BR>Default: 0<BR><BR>zero, meaning that the user is not automatically enabled and should execute the enable command to gain enable privileges, unless negated by the noenable directive or \-noenable command\-line option.<BR>"<BR>
<BR>
Regards.<BR><BR> <BR>
<DIV>
<DIV id=SkyDrivePlaceholder></DIV>
<HR id=stopSpelling>
From: michael@maymann.org<BR>Date: Fri, 9 Mar 2012 12:23:24 +0100<BR>To: rancid-discuss@shrubbery.net<BR>Subject: Re: [rancid] Cisco ASA+WLC script<BR><BR>Hi,<BR><BR>Daniel+DenyIPAnyAny: Thanks for your quick reply :) !<BR><BR>1. I'm running rancid 2.3.6... don't have any wlogin anywhere... can't see any in 2.3.8 either - how do I get wlogin ?<BR>I'm doing this because I have some equipment that rancid doesn't support, that I also need backed-up (and don't know expect that well). So just created a little wrapper around Rancid to perfect things for me.<BR><BR>2. How do you backup your ASA's ?<BR>nothing is wrong with my .clogin:<BR>---<BR>add method * ssh<BR>#add method * telnet<BR>add user * USR<BR>add password * {PWD} {enable_PWD}<BR>add autoenable * {1}<BR>---<BR>works fine, logging in and trying to run command(s) and exits - but doesn't enter enable mode and therefore can't run commands like "more system:running-config" that is working fine manually logging in to enable mode:<BR>-bash-3.2$ /usr/libexec/rancid/clogin -f ~/.cloginrc_cisco -c "more system:running-config" HOST<BR>HOST<BR>spawn ssh -c 3des -x -l admin HOST<BR>USR@HOST's password:<BR>Type help or '?' for a list of available commands.<BR>HOST><BR>HOST> terminal length 0<BR> ^<BR>ERROR: % Invalid input detected at '^' marker.<BR>HOST> more system:running-config<BR> ^<BR>ERROR: % Invalid input detected at '^' marker.<BR>HOST>exit<BR><BR>Logoff<BR><BR>Connection to HOST closed.<BR><BR><BR>Thanks in advance :-) !<BR><BR>~maymann<BR><BR>
<DIV class=ecxgmail_quote>2012/3/9 Deny IP Any Any <SPAN dir=ltr><<A href="mailto:denyipanyany@gmail.com">denyipanyany@gmail.com</A>></SPAN><BR>
<BLOCKQUOTE style="BORDER-LEFT: #ccc 1px solid; PADDING-LEFT: 1ex" class=ecxgmail_quote>I backup several Cisco ASAs without issue; with your symptoms, usually<BR>the problem is with your .clogin file (specifically either the<BR>autologin option)<BR><BR>2012/3/8 Michael Maymann <<A href="mailto:michael@maymann.org">michael@maymann.org</A>>:<BR>
<DIV>
<DIV class=h5>> Hi List,<BR>><BR>> I am trying to configure scheduled backups of my Cisco ASAs and WLCs.<BR>> I am currently trying to use clogin. Login is successful, but it never<BR>> enters enable/configure mode - and therefore is not able to run the desired<BR>> commands/retrieve all the necessary information (it tries to though !).<BR>> Can't paste my .clogin, as I'm at home currently. But everything<BR>> (password/enable_password) is ok there ! (I am running this already on my HP<BR>> Switches)<BR>><BR>> just after login and before it should enter enable/configure mode, it tries<BR>> to execute the command (from within clogin - not something I told it to...):<BR>> "terminal length 0"<BR>> but the right command for this on a ASA/WLC's is:<BR>> "no pager" or "terminal pager 0"<BR>><BR>> 1. Is there a better Xlogin that I should use ?<BR>> 2. If clogin is the best script, where in the clogin can I fix this ?<BR>> 3. Furthermore clogin doesn't logout of my WLC's when it finishes - I guess<BR>> I could just add a "; exit" or "; logout" at the end of my command, but<BR>> where can I fix this as-well ?<BR>><BR>><BR>> Thanks in advance :) !<BR>> ~maymann<BR>><BR></DIV></DIV>> _______________________________________________<BR>> Rancid-discuss mailing list<BR>> <A href="mailto:Rancid-discuss@shrubbery.net">Rancid-discuss@shrubbery.net</A><BR>> <A href="http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss" target=_blank>http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss</A><BR><SPAN class=ecxHOEnZb><FONT color=#888888><BR><BR><BR>--<BR>deny ip any any (4393649193 matches)<BR></FONT></SPAN></BLOCKQUOTE></DIV><BR><BR>_______________________________________________ Rancid-discuss mailing list Rancid-discuss@shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss</DIV> </div></body>
</html>