AW: Authorization failed in cisco switch

Backs Max MBacks at
Mon Jul 22 23:08:36 CEST 2013


you sending the wrong attributes or your switchconfig is not correct.

The switch needs for authorization only these two attributes:
      Service-Type := Login
      Cisco-AVPair := "shell:priv-lvl=15"

And this is the working aaa config:

aaa new-model
aaa authentication login default group radius local
aaa authorization exec default group radius local

radius-server host auth-port 1812 acct-port 1813 key 0 testing123

that's working on a WS-C2960-24TC-L with C2960 Software (C2960-LANBASEK9-M), Version 12.2(55)SE

best regards,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Users mailing list