A question about Radius

Unanswered Question
Oct 17th, 2007

Hi

I have aaa configuration as follows (part of it):


aaa authentication login default group radius local

aaa authentication login conlogin group radius local

aaa authentication enable default group radius enable


Login works fine, but if I try to go into enable mode it lets me through if I type either the password configured on the Radius server or the local enable password. When the local enable password is used the debug on the router says that the radius server could not be found.


Any ideas?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Wed, 10/17/2007 - 07:59

Viktor,

Enable authentication was meant to fucntion with TACACS, and when used with RADIUS it does not

perform the same. As a result, the only way for you to get enable authentication to work with RADIUS would be to input the username $enab15$ into your RADIUS server and every user would need to use that username.



Regards,

~JG


Please rate if helps

Actions

This Discussion