01-28-2019 06:34 AM
Hi All ,
I have cisco ISE 2.2 Distributed deployment with Failover .
my Mobile VPN users are getting connected with Secondary PSN instead Primary PSN.
now i want to know where is time-out configured ? in which if primary radius is not responding then VPN users authenticating by Secondary PSN (Secondary Radius ) .
Regards ,
Solved! Go to Solution.
01-28-2019 07:18 AM
@Mohammed al Baqariwith respect the command is
show aaa-server
also this command can be used show run all aaa-server
01-28-2019 06:39 AM - edited 01-28-2019 06:40 AM
if you on ASA box.
aaa-server my-radius-group protocol radius aaa-server my-radius-group host 1.2.3.4 timeout 3 key “password” authentication-port 1812 accounting-port 1813
01-28-2019 07:26 AM
01-28-2019 07:30 AM - edited 01-28-2019 07:32 AM
The range is from 1 to 60 seconds
https://www.cisco.com/c/m/en_us/techdoc/dc/reference/cli/n5k/commands/radius-server-timeout.html
it will only impact the aaa-server.
01-28-2019 07:15 AM
01-28-2019 07:18 AM
@Mohammed al Baqariwith respect the command is
show aaa-server
also this command can be used show run all aaa-server
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: