AAA on a FWSM

sleeson · ‎05-14-2004

Has anyone configured AAA on a FWSM V1.1.3

I am testing with no radius server available

The command I am using is

aaa authentication supervisor console tradius [LOCAL]

However the local element does not appear in the config and no access is available.

Local access is available using the following

aaa authentication supervisor console LOCAL

any ideas?

jdughi · ‎05-22-2004

Hi, any response to this, yet? (I posted this so I can e-mailed when a response does come through.) Thank you. Josh

sleeson · ‎05-23-2004

No responses to date. Steve

pcomeaux · ‎05-24-2004

I've configured AAA on a FWSM running 2.2 using downloadable ACLs from the ACS server via radius.

I haven't tried your command but am interested in more about what you are trying to do. It may be obvious from you config above, but let us know so we can try to help.

thanks

peter

sleeson · ‎05-25-2004

Hi, thaqnks for the response.

I am trying to configure radius authentication for anyone logging into the FWSM. Which I still have not got working. However I was also testing fallback without the radius server being available which didn't seem to work using the LOCAL keyword.

sleeson · ‎05-28-2004

I have resolved this issue.

It would appear that the LOCAL keyword is only available in 2.2.1

So with 1.1.3 software there is no fall back to local login shouldthe radius server fail other than to have multiple radius servers.

thanks

SteveL

pcomeaux · ‎05-28-2004

Nice find. Sorry we did not get you a response sooner.

For those interested, here's the link to release notes for 2.2.1 which highlights new features: http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/mod_icn/fwsm/fwsm_2_2/fwsmrns.htm#wp65269

peter