Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2035
Views
0
Helpful
2
Replies

CAT4006 & CAT6509 radius authorization

changh
Frequent Visitor
Frequent Visitor

‎10-10-2003 12:13 AM - edited ‎03-10-2019 07:31 AM

I setup a radius server to apply aaa on routers and switches.In routers, using local privilege and work well. In switches, it just gets into exec mode. When I set radius profile, just one 6509 can become enable prompt, others fail.I checked the version, 6509 for 6.4(4) worked, 6509 for 6.1 failed, 4006 for 5.5 failed. In http://www.cisco.com/en/US/tech/tk583/tk642/technologies_tech_note09186a0080094ea4.shtml#f, it said radius could exec authorization after 5.4. Why? Can anybody help? Thanks.

Labels:
0 Helpful
2 Replies 2

jsivulka
Level 10
Level 10

‎10-17-2003 07:34 AM

Step F in the document has an interesting note. If the service-type is set for anything other than 6-administrative (for example, 1-login, 7-shell, or 2-framed), the user arrives at the switch exec prompt, but not the enable prompt. This is problem you seem to be running into. Set the Service-Type (RADIUS attribute 6) to Administrative.

0 Helpful

changh
Frequent Visitor
Frequent Visitor
In response to jsivulka

‎10-27-2003 12:16 AM

Yes, I had read it hard. But when I set Service-type to 6, some switch works and some doesn't. I want to know the different between those.

Thanks for your reply!

0 Helpful
Customers Also Viewed These Support Documents