Restrictions
The following are some of the restrictions when working with CAC authentication:
-
Support is not provided for any other management connections other than SSH.
-
Support is not provided for any switch acting as CAC SSH client.
-
Support is not provided for public-key authentication based on DSA and ECDSA public keys.
-
The maximum number of client public keys that can be installed is 10.
-
When there is failure in any one of the authentication methods, the SSH connection will not be established.
-
The following table lists the invalid authentication methods for SSH.
login
enable
public-key
certificate
public-key
two-factor-certificate
certificate
public-key
certificate
two-factor-public-key
two-factor-public-key
certificate
two-factor-public-key
two-factor-certificate
two-factor-certificate
public-key
two-factor-certificate
two-factor-public-key