Buy or Renew
Buy or Renew
Welcome to the new Cisco Community. LEARN MORE about the updates and what is coming.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3452
Views
17
Helpful
3
Replies

RADIUS attribute

Go to solution
Ping Zhou
Collaborator
Collaborator

‎03-13-2018 11:12 AM

Hi Experts,

I have Cat3750 V2 running 12.2.55 and doing dACL. I'm getting the following message on ISE 1.4p11. the same switch config,..well, highly similar config...works on Cat3650 running 3.6.7E.

Is this some sort of NAD/ISE compatibility issue? or some radius-server attribute command I need to add on Cat 3750V2?

"""

11025

The Access-Request for the requested dACL is missing a cisco-av-pair attribute

with the value aaa:event=acl-download. The request is rejected

"""

Thanks!

1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Ping Zhou
Collaborator
Collaborator

‎03-13-2018 12:55 PM

Okay... just found out...these 2 commands were missed. The reason why one switch worked is because "Beginning from Cisco IOS version 15.2(1)E / XE 3.5.0E , the VSA commands are enabled by default."

Demystifying RADIUS Server Configurations - Cisco

radius-server vsa send accounting

radius-server vsa send authentication

View solution in original post

3 REPLIES 3

Go to solution
Ping Zhou
Collaborator
Collaborator

‎03-13-2018 12:55 PM

Okay... just found out...these 2 commands were missed. The reason why one switch worked is because "Beginning from Cisco IOS version 15.2(1)E / XE 3.5.0E , the VSA commands are enabled by default."

Demystifying RADIUS Server Configurations - Cisco

radius-server vsa send accounting

radius-server vsa send authentication

Go to solution
hslai
Cisco Employee
Cisco Employee
In response to Ping Zhou

‎03-13-2018 03:25 PM

Many thanks for finding out the answer yourself and sharing it.

Last time I used 12.2(55) or 15.0(2)SE was 4 years ago and I would not have not remember this.

Go to solution
pavank2
Cisco Employee
Cisco Employee
In response to Ping Zhou

‎02-26-2021 04:06 PM

thanks, it really helped

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents