Nexus 5596UP 7.3.3.N1.1, AAA Commands

CiscoGirl · ‎09-20-2018

Hi All,

This is what is configured on all the routers and switches.

aaa new-model

aaa authentication login default group radius local
aaa authentication enable default none
aaa authorization console "There is no authorization on the console session" for Nexus
aaa authorization exec default group radius if-authenticated
aaa accounting exec default start-stop group radius
aaa accounting connection default start-stop group radius

!

radius server RADIUS1
address ipv4 10.x.x.x auth-port 1645 acct-port 1646
key xxxxx

For the Nexus 5596UP. I can only find these commands.

radius-server host 10.x.x.x key 7 "xxxxx" auth-port 1645 acct-port 1646 authentication accounting

aaa authentication login default group radius local
aaa accounting default group radius

Are there equivalent commands for these statements on the Nexus?
aaa authentication enable default none
aaa authorization exec default group radius if-authenticated
aaa accounting exec default start-stop group radius
aaa accounting connection default start-stop group radius

My option for authorization is below... but I see that cmd is for tacacs? I'm using radius.

N5K1-SW1(config)# aaa authorization ?
ssh-certificate Configure ssh certificate
ssh-publickey Configure ssh publickey

Jason Kunst · ‎09-20-2018

Might have better luck asking in the community for switching but here are some links
https://www.google.com/search?q=nexus+5596+radius&oq=nexus+5596+radius&aqs=chrome..69i57.4331j0j4&sourceid=chrome&ie=UTF-8

Not sure what you're setting it up for either? is it for RADIUS to do MAB and/or DOT1X?