04-30-2024 05:58 AM
Hello,
have radius in windows server. I configured radius login in Cisco 2960X. Login works fine with radius account but I can't login with local account.
Can anybody help me with this please? Want to have working radius and local login.
Thank you very much.
04-30-2024 06:03 AM
You can only use if radius fails and the use local account.
You can do testing changing the radius key, so that failes to connect to windows radius then you can use local account.
here is example :
aaa authentication login default group radius local
Not sure what this means
aaa authentication login BACKDOOR local-case
04-30-2024 06:20 AM
I think "local-case" is just to make the usernames case sensitive.
04-30-2024 06:23 AM
As @balaji.bandi mentioned, you won't be able to access the device with a local user account as long as the RADIUS server is up/active, and I think changing the RADIU key wouldn't be enough to simulate a RADIUS server failure because I think as long as the switch can reach to the RADIUS server over L3 it won't fall back to the local database, at least this is what I came across previously. If you have a firewall in between, try to set a temporary rule that denies any RADIUS traffic from the switch, and then test the local access, it should work in that case.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide