failed to privilege mode when authenticated by radius server

Unanswered Question
Aug 27th, 2007
User Badges:

hi,

I tried to authenticate and authorized Nokia/checkpoint Nortel/AD3 and Nortel 5510 platform using an 4.1 for windows ACS. the ACCESS-REQUEST is well processed bi the radius server wich send ACCESS-ACCEPT to the AAA Client (ie NORTEL or NOKIA), but i'have got privilege access denied on the Client side.

RADIUS IETF Dictionnary is used for every device.

all others Cisco Devices authenticate and are well authorized.


I didn't found any documentation about this item.


best regards


Alain


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rochopra Tue, 08/28/2007 - 08:29
User Badges:
  • Cisco Employee,

Hi,


You need to configure proper parameters in ACS based on the device requirement which you can get from the vendor.


To add Vendor Specific Attribute in ACS based on the dictionary file specified by vendor, you need to create an INI file and upload it to windows using following command:


CSUtil.exe -addUDV slot-number filename


Following link can give you more information on the same:


http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/A_CSUtil.html#wp365540


~Rohit

aalonzo93 Mon, 09/03/2007 - 06:34
User Badges:

Hi,

The vendor specified wich AVpair is needed for Alteon Devices, "administrative" value for number 6 IETF AVpair is required, so this is working fine now.


best regards


Alain

Actions

This Discussion