I have a group in Active Directory that is allowed access to our network infrastructure, including Cisco Works. When I login to Cisco Works with an account that is a member of this AD account, I do not get any administrative permissions in Cisco Works. How to I relate the AD group (authenticated via Radius) to an administrative role in Cisco Works?
Edit: If I go into Common Services -> Security -> AAA Mode Setup, I can setup Radius authentication, which works great, but I cannot figure out how to grant server roles to an authenticated user. This is so frustrating.
If you login as a user who does not have an account in Radius (e.g. admin), then LMS will fallback to local authentication. The users allowed for fallback (admin is the only user by default) can be configured when you switch the login module.
No, what you are doing is the proper way of doing external authentication.