Restrictions

The following are some of the restrictions when working with CAC authentication:

  • Support is not provided for any other management connections other than SSH.

  • Support is not provided for any switch acting as CAC SSH client.

  • Support is not provided for public-key authentication based on DSA and ECDSA public keys.

  • The maximum number of client public keys that can be installed is 10.

  • When there is failure in any one of the authentication methods, the SSH connection will not be established.

  • The following table lists the invalid authentication methods for SSH.

    login

    enable

    public-key

    certificate

    public-key

    two-factor-certificate

    certificate

    public-key

    certificate

    two-factor-public-key

    two-factor-public-key

    certificate

    two-factor-public-key

    two-factor-certificate

    two-factor-certificate

    public-key

    two-factor-certificate

    two-factor-public-key