We have been using our ACS appliance to authenticate logging into our Cisco gear. We have been using tacacs+ and it has worked fine but I am trying to set it up using radius. I basically changed on the configs on my test switch to radius wherever it read tacacs+ and changed out ACS to use the radius protocol. Now, I am unable to log into the test switch I set up when I was able to before using tacacs+.
aaa authentication dot1x default group radius
aaa authentication login default group radius local-case
aaa authorization exec default group radius local
aaa authorization commands 15 default group radius local
aaa accounting commands 15 default start-stop group radius
radius-server host 172.16.x.x auth-port 1645 acct-port 1646 key xxxxxx
When I check the logs on the ACS, it reads "ACS user known"
Let me know if you need anything else.