Ok, I've got the basic authentication working through radius, but now I want it to assign certain privilege levels based on the username. It seems to me this would be done through authorization, but I can't seem to get it to work. Can anyone point me in the right direction? I've purchased the RADIUS book, and I have access to many Cisco books online, and I can't seem to find what I'm looking for. Thanks.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Radius Authentication
- Thread starter dozier
- Start date
- Thread starter
- #3
- Thread starter
- #4
I've got it working now.
Cisco config:
freeRADIUS config (users file):
Cisco config:
Code:
aaa authentication login radius-auth group radius
aaa authorization exec radius-auth group radius
!
!
!
line vty 0 4
authorization exec radius-auth
login authentication radius-authfreeRADIUS config (users file):
Code:
testaccount Auth-Type := System
Cisco-AVPair = "shell:priv-lvl=15"- Status
Similar threads
- Locked
- Question