Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

aaa Radius login on 3560 locks domain-account

Hello at all!

I´ve a little problem with the aaa authentication over RADIUS with a Cisco 3560G-48PS - IOS 12.2(58)SE2.

When I try to log in to the Switch per Telnet, it didn`t works and my windows domain account is locked. Here the aaa config:


aaa new-model

aaa authentication login default local group radius

aaa authorization config-commands

aaa authorization network default group radius if-authenticated

radius-server host YYY.YYY.YYY.YYY auth-port YYYY acct-port YYY

radius-server host XXX.XXX.XXX.XXX auth-port XXX acct-port XXX

radius-server retransmit 1

radius-server key 7 XXXXXXXXXXXXXXXX

radius-server vsa send accounting

radius-server vsa send authentication

The same aa config runs at other switches without problems. Does anyone have an idea?

Thanks very much! :-)

1 REPLY
Purple

aaa Radius login on 3560 locks domain-account

Hi,

can you try this:

no aaa authentication login default local group radius

aaa authentication login default group radius local

Regards.

Alain.

Don't forget to rate helpful posts.

Don't forget to rate helpful posts.
271
Views
0
Helpful
1
Replies