Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

AAA Policy --- IAS with Fallback to Local DB

I am trying to create AAA policy that will authenticate users via IAS but fallback to local DB if network is not available. I have successfully configured IAS to properly authenticate vty and console users but I get "access-denied" when using the single local user I set up.

I configured as follows:

Router(config)# aaa new-model

Router(config)# radius-server host 10.1.1.1 key *******

Router(config)# ip radius source-interface Vlan1

Router(config)# aaa authentication login mylist group radius local

Then I apply this command to con0 and vty 0 15 lines.

Router(config-line)#login authentication mylist

Thanks in advance....

1 REPLY
Gold

Re: AAA Policy --- IAS with Fallback to Local DB

the radius server must be unavailable for it to fall back to the local database.. stop IAS and try it.

(you do have a username/password configured on the router, right?)

247
Views
0
Helpful
1
Replies
CreatePlease login to create content