I'm trying to configure ACS 5.4 as radius server for network access (PPP connections).
In monitoring and reports the users have green color , but the clients cannot
send data. Auth method is CHAP/MD5.
Does anybody have any idea of what's could be wrong?
Allowed protocols are set to CHAP and PAP only.
Are you using Active Directory as identity store?
No, I'm using internal users.
We are using MC75A terminals. The terminal says wrong username and password, but the user has green color in the ACE log.
Using the following ios radius statements on the NAS:
aaa authentication ppp default group radius local
aaa authorization network default group radius local
radius-server host x.x.x.x auth-port 1645 acct-port 1646
radius-server key 7 XXXX
Works fine with the old tacacs server.
removing: aaa authorization network default group radius local, solved the issue.
Helpfull document: http://www.cisco.com/en/US/tech/tk59/technologies_configuration_example09186a00800fa54a.shtml
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: