Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3578
Views
5
Helpful
2
Replies

Radius On Nexus 7K

niterid3r
Level 1
Level 1

‎04-17-2013 05:59 PM - edited ‎03-01-2019 07:18 AM

Hi Guys,

When configuring radius on Nexus 7K i get following  error...Which is a bit weird.

radius-server host <IP> key 0 <key> auth-port 1645 acct-port 1646 authentication accounting

aaa group server radius RadServer

    server <IP>

    source-interface lo0

When configuring

aaa authentication login default group RadServer local

Error :

invalid server group could not update aaa configuration

Any help would be appreciated.

Regards,

niterid3r.

Labels:
0 Helpful
2 Replies 2

vsathiam
Cisco Employee
Cisco Employee

‎04-21-2013 10:16 AM

You configured ( aaa authentication login default group RadServer local )

Try ( aaa authentication login default group RadServer )

From N7k Security Guide -

The local  keyword is not supported (and is not required) when configuring AAA  authentication groups because local authentication is the default if  remote servers are unreachable. For example, if you configure aaa authentication login default group g1, local authentication is tried if you are unable to authenticate using AAA group g1. In contrast, if you configure aaa authentication login default group g1 none, no authentication is performed if you are unable to authenticate using AAA group g1.

Reference:

http://www.cisco.com/en/US/docs/switches/datacenter/sw/6_x/nx-os/security/configuration/guide/b_Cisco_Nexus_7000_NX-OS_Security_Configuration_Guide__Release_6.x_chapter_0100.html#task_1247382

dagyb
Level 1
Level 1
In response to vsathiam

‎11-21-2013 09:21 AM

Yep, thats what it was, Thanks!

0 Helpful
Customers Also Viewed These Support Documents