Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Unable to login to CSM Config Manager using Radius Authentication

Hi everone,

I have config CSM 4.4  for Radius authentication.

From https;//CSM  IP address  i can log on using Radius authentication fine no issues

But when i login from my configuration manager at desktop with radius i get error message

You are not allowed to login because your user profile doesn’t have any role associated.

Please contact CSM admin for configuring proper role.

Any ideas what should i do?

Regards

MAhesh

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

HiI had the same problem as

Hi

I had the same problem as Mahesh. I went through the role settings several times, I even created a new role and set it to default and I still got the error message when I tried to access the CSM client using my radius account. The radius server, Windows NPS, was authenticating correctly, no problem there. I could also log into the web GUI for the server using my radius accounts.

 

The setting that solved it for me was found in the CSM client under Administration - Server Security. Once I ticked "Allow logon for user ids not available in Local User Database" I could log into the CSM client using my radius logins.

 

Regrards

Fredrik Hofgren

3 REPLIES

As I understand it, you must

As I understand it, you must also define the users in Common Services and set their role there.  Unlike (for example) ASA VPN users, who can be authenticated by RADIUS and the RADIUS server will return some attribute(s) if configured this way, CSM apparently does NOT check any such attributes returned, and so basically all you can do is use RADIUS/AD/whatever to "manage passwords."  So in our case we have simply listed our NetEng users in Common Services with "XXX" role, and assigned a Default Role for users not so defined in Common Services.

New Member

HiI had the same problem as

Hi

I had the same problem as Mahesh. I went through the role settings several times, I even created a new role and set it to default and I still got the error message when I tried to access the CSM client using my radius account. The radius server, Windows NPS, was authenticating correctly, no problem there. I could also log into the web GUI for the server using my radius accounts.

 

The setting that solved it for me was found in the CSM client under Administration - Server Security. Once I ticked "Allow logon for user ids not available in Local User Database" I could log into the CSM client using my radius logins.

 

Regrards

Fredrik Hofgren

New Member

 Hi Fredrik,I open Tac case

 

Hi Fredrik,

I open Tac case and for this and got it resolved.

Seems TAC did exactly as what you said.

 

Regards

Mahesh

 

493
Views
5
Helpful
3
Replies
CreatePlease to create content