09-29-2007 09:52 PM
Hello
I configured a juniper firewall to authenticate with Cisco ACS Radius
and when a request go to the ACS it accepts and pass it (in pass authenticated log) , but juniper log say user authentication failed and rejected by radius server . Is there any specific things that i should configure in ACS as attribute ?
Thanks
Mory
10-01-2007 05:47 AM
Hi,
MAke sure you set the vendor-specific-attribute for Juniper in ACS. I think the steps are in this link http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a008007decd.html#273901
Regards,
Dandy
10-01-2007 08:58 PM
Hello Dandy
Appreciate for ur answer , but i dont know what should i set for Juniper VSA in ACS , do u have a configuration example .Thanks for your kindness .
Regards
Mory
10-01-2007 09:14 PM
Hi,
Juniper Vendor ID number is 2636
Attribute:
Juniper-Local-User-Name
Juniper-Allow-Commands
Juniper-Deny-Commands
Number:
001
002
003
Type of value:
string (maximum length 247 characters)
string (maximum length 247 characters)
string (maximum length 247 characters)
Inbound/Outbound:
Outbound
Outbound
Outbound
Multiple:
No
No
No
Regards,
Dandy
10-01-2007 09:30 PM
Dear Dandy
I dont know what should i put for Juniper-Local-User-Name or other juniper attribute values in ACS .
Regards
Dandy
10-02-2007 01:46 AM
Hi,
Check this link http://www.juniper.net/techpubs/software/junos/junos57/swconfig57-getting-started/html/sys-mgmt-authentication3.html
...and no copying of name :)
Regards,
Dandy
10-02-2007 03:20 AM
Thanks Dear and sorry about name :))
Mory
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide