Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3306
Views
0
Helpful
0
Replies

Key precedence when using aaa group server and radius-server host

klaustecnico
Level 1
Level 1

‎10-30-2011 06:19 AM - last edited on ‎02-24-2020 11:11 AM by Level 9

Looking at the following configuration on a Cisco Router:

 

!
aaa group server radius 8021x
  server-private 192.168.1.1 auth-port 1812 acct-port 1813 key SECRET-A
!
aaa group server radius radius-auth
server-private 192.168.2.1 auth-port 1645 acct-port 1646 key SECRET-B
!
radius-server host 192.168.1.1 auth-port 1812 acct-port 1813 key SECRET-C
!

The question is:

 

When considering the radius server 192.168.1.1 which password / key will take precedence: SECRET-A or SECRET-B ?

 

Reading the documentation posted below the answer is:

 

SECRET-A, because:
In cases where both global commands and server commands are used, the server command will take precedence over the global command.

 

Does anyone know if this is correct ? Which key will take precedence ?

 

 

See:

 

See: http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfrad.html#wp1001168

 

See: http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfrad.html#wp1001482

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents