Freeradius + Cisco WLC + Authorisation
Hi there, Hoping someone might be able to help, with what should be a simple problem.. I have a Cisco vWLC that is set up to autheticate against a freeradius server.. At this stage I am just wanting to use it to authenticate & authorise administrative users, so that they can use the GUI.. The users can succesfully log on, however they are not getting the correct authorisation.. What settings to I need to include in /etc/raddb/users to allow the correct Authorisation level? I am guessing it is some sort of "cisco-avpair = ???" command.. just not sure which one.. Any help is greatly appreciated!! Thanks!
Hi,
What settings to I need to include in /etc/raddb/users to allow the correct Authorisation level?
the cisco documentation is pretty good for this , both wireless controller (though they. obviously, focus on ACS and ISE examples) and their RADIUS tech page: http://www.cisco.com/c/en/us/support/docs/security/secure-access-control-sys... main answer - service-type Administrative we looked at using RADIUS but found that cisco still have more bias towards TACACS+ so we use that for multi-grained access control to the WCS system (different tasks available for different people on the web interface...not just a 'all admin' switch) alan
participants (2)
-
A.L.M.Buxey@lboro.ac.uk -
mail@moult.com.au