AW: Authorization failed in cisco switch

Backs Max MBacks at telba.de
Mon Jul 22 23:08:36 CEST 2013


Hi,

you sending the wrong attributes or your switchconfig is not correct.

The switch needs for authorization only these two attributes:
      Service-Type := Login
      Cisco-AVPair := "shell:priv-lvl=15"

And this is the working aaa config:

aaa new-model
aaa authentication login default group radius local
aaa authorization exec default group radius local

radius-server host 192.168.17.50 auth-port 1812 acct-port 1813 key 0 testing123

that's working on a WS-C2960-24TC-L with C2960 Software (C2960-LANBASEK9-M), Version 12.2(55)SE

best regards,
Max
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130722/07269d45/attachment.html>


More information about the Freeradius-Users mailing list