Restrictions
The following are some of the restrictions when working with CAC authentication:
Support is not provided for any other management connections other than SSH.
Support is not provided for any switch acting as CAC SSH client.
Support is not provided for public-key authentication based on DSA and ECDSA public keys.
The maximum number of client public keys that can be installed is 10.
When there is failure in any one of the authentication methods, the SSH connection will not be established.
- The following table lists the invalid authentication methods for SSH.
login
enable
public-key
certificate
public-key
two-factor-certificate
certificate
public-key
certificate
two-factor-public-key
two-factor-public-key
certificate
two-factor-public-key
two-factor-certificate
two-factor-certificate
public-key
two-factor-certificate
two-factor-public-key