Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Problem radius

I have 30 switches, and in one of them this presenting the message: "RADIUS server 172.23.11.5:1645,1646 is not responding", the other ones don't have that problem.

I annex log of the switch.

sh ver

sh conf

What could be happening?

3 REPLIES
Silver

Re: Problem radius

Look at your ACS failed authentication logs to determine why it's failing.

If you remove the 172.23.11.5 host, does this switch authenticate against the other servers? Check your shared key on both the ACS server (172.23.11.5) and your switch. Reenter the key on both devices to ensure there is no hidden space at the end.

HTH

Steve

New Member

Re: Problem radius

i forget log

Silver

Re: Problem radius

When you have multiple authentication servers configured, Cisco IOS uses a "radius server deadtime" feature.

http://www.cisco.com/en/US/products/sw/iosswrel/ps1826/products_command_reference_chapter09186a00800d9bf2.html#xtocid182015

Your IOS is doing exactly what it's designed to do:

RADIUS server 172.23.11.5:1645,1646 is not responding.

RADIUS server 172.23.11.5:1645,1646 has returned.

You need to go to the logs on the ACS server and see why this device is failing authentication.

HTH

Steve

113
Views
0
Helpful
3
Replies