The video example sets up the windows side ok but there is nothing about the cisco side.

Something like:

aaa new-model

aaa group server radius authservlist

server 10.1.1.1

aaa authentication login authlist local group authservlist

radius-server host 10.1.1.1 key someverylongpassword

line con 0

login authentication authlist

line vty 0 4

login authentication authlist

I think that's all you would need for the cisco side

Bingoo!

Thanks for sharing it Collin

HUGE help, thank you very much. I have it working now.

It's was a real pain to set up, took me about 1/2 a day to figure it out. Glad it helped.

I may have spoken a little too soon. I had no problems with 3560, 3750 series devices. I am currntly having problems with 2950 and 2960 devices. When I do a 'debug radius' I get errors:

RADIUS: Cisco AVPair "shell:priv-lvl=15"

RADIUS: unrecognized Vendor code 311

RADIUS: unrecognized Vendor code 311

RADIUS: no appropriate authorization type for user.exit

Can you post your AAA config from a 2950 or 2960?

Posting 2960 config with debug information at bottom.

HUGE help, thank you very much. I have it working now.

Hello there,

The link is not available anymore, could I find it anywhere?

Thanks,

Victor

Hi Colin,

I see the link is broken.

https://packetpros.com/cisco_kb/RADIUS_2008.html

Can you please provide me link again?

Thank you,

Mehul

Hey

can you check if you have done the following config

1.push the service type = login

2.Set the Attribute Format to "String"

Type "shell:priv-lvl=15" in the Attribute Value field

Let me know if it helped.

Thanks for the help!

shell:priv-lvl=15 was already there but it only grants privelege mode.

Service-Type = Login  setting worked like a charm.