cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

219
Views
0
Helpful
1
Replies
Highlighted
Beginner

Nexus 5596UP 7.3.3.N1.1, AAA Commands

Hi All,

This is what is configured on all the routers and switches.

aaa new-model

aaa authentication login default group radius local
aaa authentication enable default none
aaa authorization console                 "There is no authorization on the console session" for Nexus
aaa authorization exec default group radius if-authenticated
aaa accounting exec default start-stop group radius
aaa accounting connection default start-stop group radius

!

radius server RADIUS1
address ipv4 10.x.x.x auth-port 1645 acct-port 1646
key xxxxx

 

For the Nexus 5596UP. I can only find these commands.

radius-server host 10.x.x.x key 7 "xxxxx" auth-port 1645 acct-port 1646 authentication accounting

aaa authentication login default group radius local
aaa accounting default group radius

 

Are there equivalent commands for these statements on the Nexus?
aaa authentication enable default none
aaa authorization exec default group radius if-authenticated
aaa accounting exec default start-stop group radius
aaa accounting connection default start-stop group radius

 

My option for authorization is below... but I see that cmd is for tacacs? I'm using radius.

N5K1-SW1(config)# aaa authorization ?
ssh-certificate Configure ssh certificate
ssh-publickey Configure ssh publickey

1 REPLY 1
Highlighted
Cisco Employee

Re: Nexus 5596UP 7.3.3.N1.1, AAA Commands

Might have better luck asking in the community for switching but here are some links
https://www.google.com/search?q=nexus+5596+radius&oq=nexus+5596+radius&aqs=chrome..69i57.4331j0j4&sourceid=chrome&ie=UTF-8

Not sure what you're setting it up for either? is it for RADIUS to do MAB and/or DOT1X?