Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1476
Views
9
Helpful
3
Replies

Radius server to Authenticate

Go to solution
shansuresh
Level 1
Level 1

‎08-01-2004 09:53 PM - edited ‎02-21-2020 10:10 AM

Hi

I want to setup the radius server, so whenever anyone try to login into a cisco switch (telneting), I want the radius server to authenicate them. Is it possible?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
a.awan
Level 4
Level 4

‎08-01-2004 10:25 PM

Yes this is possible provided you configure your switches to authenticate against the Radius server. To achieve this you have to use a feature called AAA. This feature can work with protocols like Radius, TACACS+, to name a few. The following link will give you an idea as to how to configure it on IOS based switches specifically the 3550:

http://www.cisco.com/en/US/partner/products/hw/switches/ps646/products_configuration_guide_chapter09186a00801a6b15.html

Make sure that you apply the authentication list to vty lines to ensure that telnet access is authenticated against the radius server. Fot CatOS based switches the following link will prove helpful:

http://www.cisco.com/en/US/partner/tech/tk583/tk642/technologies_tech_note09186a0080094ea4.shtml

View solution in original post

0 Helpful
3 Replies 3

Go to solution
a.awan
Level 4
Level 4

‎08-01-2004 10:25 PM

Yes this is possible provided you configure your switches to authenticate against the Radius server. To achieve this you have to use a feature called AAA. This feature can work with protocols like Radius, TACACS+, to name a few. The following link will give you an idea as to how to configure it on IOS based switches specifically the 3550:

http://www.cisco.com/en/US/partner/products/hw/switches/ps646/products_configuration_guide_chapter09186a00801a6b15.html

Make sure that you apply the authentication list to vty lines to ensure that telnet access is authenticated against the radius server. Fot CatOS based switches the following link will prove helpful:

http://www.cisco.com/en/US/partner/tech/tk583/tk642/technologies_tech_note09186a0080094ea4.shtml

0 Helpful

Go to solution
shansuresh
Level 1
Level 1
In response to a.awan

‎08-04-2004 04:53 PM

Thanks, That's really helped me.

Do you know where I can find the documentation on how to setup on the Radius server? As the above doucmentation only tells what I needed to configure on the Cisco switch but it fails to tell what what I need to configure on the RADIUS server?

0 Helpful

Go to solution
a.awan
Level 4
Level 4
In response to shansuresh

‎08-04-2004 09:53 PM

The way you configure the Radius server depends on the kind of Radius server you are using. However, to get the basic authentication process up and running all you need to configure on the Radius server is the client (your router or switch) and a way to authenticate the user logging into the client. Pretty much all radius servers support authentication against an internal user database which means that you configure the username and password on the radius server itself. They also let you integrate with an LDAP database or maybe with MS Windows Active Directory natively.To put you in the right direction i can suggest a few Radius servers you can look at:

1. Cisco System ACS. (supports both Radius and TACACS)

2. Funk Software Steel Belted Radius.

3. Microsoft IAS.

4. Free Radius (yes it is free as it is open source)

Customers Also Viewed These Support Documents