Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1685
Views
0
Helpful
2
Replies

MSCHAPv2 for telnet authentication via IAS

kbrookov
Level 1
Level 1

‎11-19-2003 06:41 AM - edited ‎03-10-2019 07:34 AM

Hello,

Is there any way to get the cisco router to use MSCHAPv2 for telnet/enable authentication?

What I have set up now:

aaa new-model

aaa authentication login telnet group radius enable

enable secret xxxxxxxxxx

enable password test

radius-server host XXXXXXXXX auth-port 1812 acct-port 1813

radius-server key ciscotest

Thanks,

Labels:
0 Helpful
2 Replies 2

aschiebe
Level 1
Level 1

‎11-19-2003 08:11 AM

MSCHAPv2 is a way of authentication for PPP connections between a computer using a Microsoft Windows operating system and a network access server (NAS).

Therefore , using MSCHAPv2 for telnet/enable authentication isn't possible (Only PPP connections)

0 Helpful

kbrookov
Level 1
Level 1
In response to aschiebe

‎11-19-2003 09:07 AM

This would be for the following command:

line vty 0 4

login authentication telnet

trying to use a Micorosoft IAS server with active directory to authenticate login attempts on a cisco router. I get an error message on the IAS server that the router is using PAP authentication. There is no way to force the router to use CHAP in this scenerio?

0 Helpful
Customers Also Viewed These Support Documents