Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1050
Views
0
Helpful
4
Replies

AAA on Nexus 4.27d and RSA Radius Server

jg
Level 1
Level 1

‎04-14-2011 02:27 PM - edited ‎03-10-2019 05:59 PM

I can authenticate between our MDS 9216i switch and RSA radius server

but my role does not come across. The logged in user is a network-operator not admin.

In the AV Pair i have defined shell:role*network-admin but it doesnt seem to come across

Any ideas?

Labels:
0 Helpful
4 Replies 4

Javier Henderson
Level 4
Level 4

‎04-15-2011 08:45 AM

It should be shell:roles*"network-admin" (ie, roles, not role)

0 Helpful

jg
Level 1
Level 1
In response to Javier Henderson

‎04-15-2011 09:58 AM

That was a type on my part, it is

shell:roles*"network-admin"

0 Helpful

Javier Henderson
Level 4
Level 4
In response to jg

‎04-15-2011 10:04 AM

In that case, looking at the packet traffic between the switch and the RADIUS server would be useful.

Also, can you post your switch configuration (the AAA relevant parts)?

0 Helpful

jg
Level 1
Level 1
In response to Javier Henderson

‎04-15-2011 10:09 AM

Here are the relevant statements

radius-server timeout 30
radius-server retransmit 2
radius-server deadtime 1
radius-server host 172.16.0.64 key 7 "uoe_cehn!0" auth-port 1645 acct-port 1646
authentication accounting
radius-server host 10.16.0.64 key 7 "uoe_cehn!0" auth-port 1645 acct-port 1646 a
uthentication accounting
aaa group server radius radius
aaa group server radius securid
aaa authentication login default group securid

aaa group server radius radius

aaa group server radius securid

server 172.16.0.64

server 10.16.0.64

0 Helpful
Customers Also Viewed These Support Documents