Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1125
Views
0
Helpful
1
Replies

Login to Friewall

polinicea
Level 1
Level 1

‎12-18-2019 12:28 PM

I have a pair of ASA 5520s. When I SSH to the firewall i'm prompted for username. I put in my username, but when i am prompted for password i can just hit enter and I am allowed in. Then when I go to enable mode and prompted for password I can hit enter again without entering the password and I'm allowed right in. I have aaa radius configured. 

 

aaa-server RADIUS protocol radius
reactivation-mode depletion deadtime 5
aaa-server RADIUS (CCINTERNAL91) host 10.10.91.25
key *****
radius-common-pw *****
aaa-server RADIUS (CCINTERNAL91) host 10.10.91.24
key *****
radius-common-pw *****
aaa-server LDAP_SRV_GRP protocol ldap
aaa-server LDAP_SRV_GRP (CCINTERNAL91) host 10.10.91.25
ldap-base-dn DC=gtelnetworks,DC=com
ldap-scope subtree
ldap-naming-attribute sAMAccountName
ldap-login-password *****
ldap-login-dn ibrmaster@gtelnetworks.com
server-type microsoft
aaa-server LDAP_SRV_GRP (CCINTERNAL91) host 10.10.91.24
ldap-base-dn DC=gtelnetworks,DC=com
ldap-scope subtree
ldap-naming-attribute sAMAccountName
ldap-login-password *****
ldap-login-dn ibrmaster@gtelnetworks.com
server-type microsoft
aaa authentication http console RADIUS LOCAL
aaa authentication ssh console RADIUS LOCAL
aaa authentication enable console RADIUS LOCAL

 

Has anyone experienced this condition?

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-18-2019 06:06 PM

If the RADIUS server is not responding you will fall back to local authentication.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card