https://community.cisco.com/t5/network-access-control/trouble-with-vty-when-console-works-fine/m-p/2211601#M136174 <P>I've done a lot of digging around and can't seem to find any references to my specific problem:</P><P></P><P>I have 3750Xs (12.2) that authenticate against Radius for both console and vty access, that all works fine.</P><P></P><P>So I took that same working config and pasted it into a new ME3400 (12.2), and for console access the authentication is working as expected, but for vty access I'm getting "authentication failed." I don't know what I'd expect to find on the server side of things as the successful console authentication kinda tells me that's all set up correctly. Doesn't seem to be many options I can add to the vty piece of config either, so I'm really stumped. What might I be missing that would make vty authentication behave differently from console authentication on an ME3400, while not being the case on a 3750X?</P><P></P><P>username admin password password</P><P></P><P>aaa new-model</P><P></P><P>aaa group server radius Auth-Radius</P><P> server 1.2.3.4 auth-port 1645 acct-port 1646</P><P></P><P>aaa authentication login default group Auth-Radius local</P><P>aaa authorization exec default group Auth-Radius local</P><P></P><P>aaa session-id common</P><P></P><P>ip radius source-interface Vlan24</P><P></P><P>radius-server host 1.2.3.4 auth-port 1645 acct-port 1646 key Key-Radius</P><P></P><P>line vty 5 15</P> Mon, 11 Mar 2019 03:27:16 GMT sfmta-cisco 2019-03-11T03:27:16Z https://community.cisco.com/t5/network-access-control/trouble-with-vty-when-console-works-fine/m-p/2211601#M136174 <P>I've done a lot of digging around and can't seem to find any references to my specific problem:</P><P></P><P>I have 3750Xs (12.2) that authenticate against Radius for both console and vty access, that all works fine.</P><P></P><P>So I took that same working config and pasted it into a new ME3400 (12.2), and for console access the authentication is working as expected, but for vty access I'm getting "authentication failed." I don't know what I'd expect to find on the server side of things as the successful console authentication kinda tells me that's all set up correctly. Doesn't seem to be many options I can add to the vty piece of config either, so I'm really stumped. What might I be missing that would make vty authentication behave differently from console authentication on an ME3400, while not being the case on a 3750X?</P><P></P><P>username admin password password</P><P></P><P>aaa new-model</P><P></P><P>aaa group server radius Auth-Radius</P><P> server 1.2.3.4 auth-port 1645 acct-port 1646</P><P></P><P>aaa authentication login default group Auth-Radius local</P><P>aaa authorization exec default group Auth-Radius local</P><P></P><P>aaa session-id common</P><P></P><P>ip radius source-interface Vlan24</P><P></P><P>radius-server host 1.2.3.4 auth-port 1645 acct-port 1646 key Key-Radius</P><P></P><P>line vty 5 15</P> Mon, 11 Mar 2019 03:27:16 GMT https://community.cisco.com/t5/network-access-control/trouble-with-vty-when-console-works-fine/m-p/2211601#M136174 sfmta-cisco 2019-03-11T03:27:16Z https://community.cisco.com/t5/network-access-control/trouble-with-vty-when-console-works-fine/m-p/2211602#M136236 <HTML><HEAD></HEAD><BODY><P>Few questions:</P><P></P><P>1.] What do you see on radius server logging section when you try a connection from vty?</P><P>2.] Can we have debugs from the device</P><P></P><P>debug aaa authentication</P><P>debug radius</P><P></P><P>3.] show run | beg line vty</P><P></P><P></P><P>Jatin Katyal <BR /> <BR /> <BR />- Do rate helpful posts -</P></BODY></HTML> Tue, 21 May 2013 19:32:51 GMT https://community.cisco.com/t5/network-access-control/trouble-with-vty-when-console-works-fine/m-p/2211602#M136236 Jatin Katyal 2013-05-21T19:32:51Z