https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379149#M432576 <HTML><HEAD></HEAD><BODY><P>ACS by default will listen on both ports 1645 and 1812, the two "standard" Radius ports. However, when talking to a proxy server it will only send them on 1645, by default. To change this you have to go into the registry and change it as follows:</P><P></P><P>Under [HKEY_LOCAL_MACHINE\SOFTWARE\Cisco\CiscoAAAv3.x\Hosts\<HOSTNAME>\RADIUS] (where <HOSTNAME> is the server you want to send the 1812 reuests to, and note that you may have to add the RADIUS key if it isn't there already), you can add the following:</HOSTNAME></HOSTNAME></P><P></P><P>"authPort"=dword:0000066e &lt;&lt;---- 1645</P><P>"acctPort"=dword:0000066d &lt;&lt;---- 1646</P><P>"timeout"=dword:00000001</P><P>"single connection"=dword:00000000</P><P>"strip users"=dword:00000000</P><P></P><P>You don't need all of them, you can just change the authPort to 1812 (714 in hex) and acctPort to 1813 (0x715) and you should be good to go. Make sure you reboot the server after making the registry changes. Keys are case-sensitive too so make sure you type them in EXACTLY as I've shown above.</P></BODY></HTML> Fri, 04 Mar 2005 01:22:51 GMT gfullage 2005-03-04T01:22:51Z https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379148#M432575 <P>Hello,</P><P>I've added two non ACS radius servers (Radiator) to the AAA servers on Network Config, in order to use them on a proxy distribution table.</P><P>I had problems authenticating users through those servers and I did a sniffer trace on the outside interface of the ACS.</P><P>What I saw is that ACS sends packets to the AAA server configured as RADIUS on port 1645, not 1812, the expected standard, and port to which the others servers are listening to. How can I change this behaviour?</P><P>Thanks</P><P></P><P>Gustavo</P> Sun, 10 Mar 2019 21:02:30 GMT https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379148#M432575 Gustavo Novais 2019-03-10T21:02:30Z https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379149#M432576 <HTML><HEAD></HEAD><BODY><P>ACS by default will listen on both ports 1645 and 1812, the two "standard" Radius ports. However, when talking to a proxy server it will only send them on 1645, by default. To change this you have to go into the registry and change it as follows:</P><P></P><P>Under [HKEY_LOCAL_MACHINE\SOFTWARE\Cisco\CiscoAAAv3.x\Hosts\<HOSTNAME>\RADIUS] (where <HOSTNAME> is the server you want to send the 1812 reuests to, and note that you may have to add the RADIUS key if it isn't there already), you can add the following:</HOSTNAME></HOSTNAME></P><P></P><P>"authPort"=dword:0000066e &lt;&lt;---- 1645</P><P>"acctPort"=dword:0000066d &lt;&lt;---- 1646</P><P>"timeout"=dword:00000001</P><P>"single connection"=dword:00000000</P><P>"strip users"=dword:00000000</P><P></P><P>You don't need all of them, you can just change the authPort to 1812 (714 in hex) and acctPort to 1813 (0x715) and you should be good to go. Make sure you reboot the server after making the registry changes. Keys are case-sensitive too so make sure you type them in EXACTLY as I've shown above.</P></BODY></HTML> Fri, 04 Mar 2005 01:22:51 GMT https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379149#M432576 gfullage 2005-03-04T01:22:51Z https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379150#M432577 <HTML><HEAD></HEAD><BODY><P>Hello, thank you for your fast response.</P><P>My problem is that I have an ACS Solution Engine! not an ACS for Windows :((</P><P>If you know the similar solution to ACS_SE, I would be most grateful!</P><P>Thank you</P><P></P><P>Gustavo</P></BODY></HTML> Fri, 04 Mar 2005 17:42:33 GMT https://community.cisco.com/t5/network-access-control/adding-aaa-servers-to-acs-to-use-proxy-radius-distribution-table/m-p/379150#M432577 Gustavo Novais 2005-03-04T17:42:33Z