Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1064
Views
0
Helpful
1
Replies

cisco 3650 ldap via radius ssh mode enable

johnblack2045
Level 1
Level 1

‎10-13-2020 09:44 PM

Hello All

 

i m using cisco 3650 and ldap via radius (freeradius) solution to authentificate on my switch

when i use an ldap account and its password i can access on to my switch in user mode

that s works

when i want to use mode ena i can 't use its password but only the password enable in my configuration switch

 

 

question

i use aaa authentication login default group radius local .....

how should i configure my switch to allow password of ldap account ?

i don't want any ldap account automatically access on  my switch with privilege mode because security

 

is there any solution (switch configuration , freeradius ?).

 

Thanks for your answer

 

Best Regards

 

 

Labels:
0 Helpful
1 Reply 1

Aref Alsouqi
VIP
VIP

‎10-14-2020 01:34 AM

LDAP and RADIUS are two different protocols, I assume you are referring to RADIUS in this case? If you are using RADIUS with Freeradius, I think you would need to configure the enable password on the RADIUS server, since when you type enable command on the network device, a RADIUS authentication request will be sent to the RADIUS server looking for the configured enable15 password. If that is not set or if it different, it will fail.

0 Helpful
Customers Also Viewed These Support Documents