Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Configuring a Second Radius Backup Server on the PIX

I have my PIX configured to use Microsoft IAS as a RADIUS (10.1.0.12) :

aaa-server partnerauth protocol radius

aaa-server partnerauth (inside) host 10.1.0.12 xxxxxx timeout 5

crypto map mymap client authentication partnerauth

I need to configure a second Microsoft IAS as a backup radius on the PIX. Is it possible ? if so how ?

Thanks

1 REPLY
Cisco Employee

Re: Configuring a Second Radius Backup Server on the PIX

Hi,

According to the Pix documentation (command reference, aaa-server) , it says that:

Specifies an AAA server or up to 14 groups of servers with a maximum of 14 servers each. Certain types of AAA services can be directed to different servers. Services can also be set up to fail over to multiple servers.

If the above is the case, then the pix should also look at the next available server if the primary fails.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/ab.htm#xtocid5

aaa-server partnerauth protocol radius

aaa-server partnerauth (inside) host 10.1.0.12 xxxxxx timeout 5

aaa-server partnerauth (inside) host 10.1.0.13 xxxxxx timeout 5

crypto map mymap client authentication partnerauth

Regards,

Arul

141
Views
0
Helpful
1
Replies