Authorization error and prompt HOST:

bobtian · ‎08-15-2023

Hello everyone,

I have one switch with AAA configured with outsid NPS server for user login authorization. After enabling AAA function on switch and I tried to login , what i see is Host: prompt with banner .

tried debugging, but log indicated authentication and authorization was successful, there is no error infos.

below is my configuration for AAA:

aaa authentication login SRMLNPS group SRMLNPS local
aaa authorization exec SRMLNPS group SRMLNPS local
aaa authorization network default group cnhkgacp
aaa accounting update periodic 15

line vty 0 4

authorization exec SRMLNPS
logging synchronous
login authentication SRMLNPS

below is snopshot for error login :

balaji.bandi · ‎08-15-2023

what device model and IOS code running on it ?

Are you able to access from console or you locked now ?

check below thread may help you :

https://community.cisco.com/t5/network-management/cisco-switch-authentication-with-microsoft-nps-case-sensitive/td-p/4606889

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

bobtian · ‎08-15-2023

The switch model is C9200-48p，software version is 17.08,

bobtian · ‎08-15-2023

I can access device with console and also tried troubleshooting with debug aaa authorization cammnd, the log display the user successfully being authorized But with the wrong privilege 15（which i set privilege 1 with this username on NPS server）

bobtian · ‎08-15-2023

And as long as i undo command 'authoriza exec radius-server' under line vty mode, the error just dispeared.