Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
394
Views
0
Helpful
3
Replies

Problem radius

peguayapero
Level 1
Level 1

‎03-07-2007 12:04 PM - edited ‎03-05-2019 02:46 PM

I have 30 switches, and in one of them this presenting the message: "RADIUS server 172.23.11.5:1645,1646 is not responding", the other ones don't have that problem.

I annex log of the switch.

sh ver

sh conf

What could be happening?

Labels:
8504-pzs-jostal01-foro.log
0 Helpful
3 Replies 3

steve.busby
Level 5
Level 5

‎03-07-2007 12:10 PM

Look at your ACS failed authentication logs to determine why it's failing.

If you remove the 172.23.11.5 host, does this switch authenticate against the other servers? Check your shared key on both the ACS server (172.23.11.5) and your switch. Reenter the key on both devices to ensure there is no hidden space at the end.

HTH

Steve

0 Helpful

peguayapero
Level 1
Level 1
In response to steve.busby

‎03-07-2007 12:14 PM

i forget log

242 KB
0 Helpful

steve.busby
Level 5
Level 5
In response to peguayapero

‎03-07-2007 12:49 PM

When you have multiple authentication servers configured, Cisco IOS uses a "radius server deadtime" feature.

http://www.cisco.com/en/US/products/sw/iosswrel/ps1826/products_command_reference_chapter09186a00800d9bf2.html#xtocid182015

Your IOS is doing exactly what it's designed to do:

RADIUS server 172.23.11.5:1645,1646 is not responding.

RADIUS server 172.23.11.5:1645,1646 has returned.

You need to go to the logs on the ACS server and see why this device is failing authentication.

HTH

Steve

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card