Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

How to Configure RADIUS in 12.2?

Cisco AS-5300

Cisco IOS Version 12.2(15)T7

What are the Cisco IOS statements needed to configure

the RADIUS service? I am NOT going to use it to

login into the router, instead, the Cisco will be

running a Tcl IVR call application which will

authenticate, authorize and do resource accounting

based on a remote RADIUS (from GNU) server.

I include below the configurations for Cisco IOS

versions 12.0, 12.1 and 11.1, taken from the O'Reilly

"RADIUS" book.

I need the configuration for IOS 12.2.

TIA,

-Ramon

---------------------------------------------------------------

For IOS Version 12.0 or 12.1:

aaa new-model

aaa authentication login default group radius local

aaa authentication login localauth local

aaa authentication ppp default if-needed group radius local

aaa authorization exec default group radius local

aaa authorization network default group radius local

aaa accounting delay-start

aaa accounting exec default start-stop group radius

aaa accounting network default start-stop group radius

aaa processes 6

---------------------------------------------------------------

For IOS Version 11.1

aaa new-model

aaa authentication ppp radppp if-needed radius

aaa authorization network radius none

aaa accounting network wait-start radius

aaa accounting network wait radius

radius-server timeout 3

---------------------------------------------------------------

1 REPLY

Re: How to Configure RADIUS in 12.2?

Ramon,

The commands needed to configure Radius authentication, authorization and accounting are the same with 12.1.

You will need also to configure the Radius server group:

aaa group server radius RADIUS

server 192.168.90.37

and of course define the radius server, authentication key between the radius server and cisco box, and authentication and accounting port if different than the defaults (1645, respectively 1646):

radius-server host 192.168.90.37 auth-port 1812 acct-port 1813

radius-server host 192.168.90.37 key yourkey

That's about it.

Cheers,

Liviu

148
Views
0
Helpful
1
Replies
CreatePlease to create content