cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
457
Views
0
Helpful
4
Replies

ppp authenticaion

p.plow
Level 1
Level 1

i have a as5350.If i dial to 5350 from my notebook, the terminal window appear, the prompt for username and password appear. If i digit the username and password ,the authentication don't pass.if i don't use after terminal window (digiting the user and pass in dial-up connection) the authentication pass.

why???

aaa new-model

aaa authentication login adm line

aaa authentication ppp mobile radius

aaa authorization network mobile radius

interface Group-Async0

ip unnumbered FastEthernet0

no ip directed-broadcast

encapsulation ppp

async mode interactive

peer default ip address pool pooltest

ppp authentication pap mobile

ppp authorization mobile

group-range 1 120

hold-queue 10 in

radius-server host xxx.xxx.xxx.xxx auth-port 1645 acct-port 1646

radius-server retransmit 10

radius-server key xxx

line 1 120

password test

no flush-at-activation

autoselect during-login

autoselect ppp

modem InOut

modem autoconfigure discovery

autocommand ppp

transport input all

4 Replies 4

p.plow
Level 1
Level 1

who can help me ?

There are two things to look at here. When you dial in using a terminal window to manually enter your username and password this uses "aaa authentication login". When you dial in using no terminal window and just let dialup networkin make the connection this uses "aaa authentication ppp".

Keepin this in mind when you dialin with your terminal window your "aaa authen login" method probably does not have the user name and pass you are typing in to authenticate the user. The best way to check would be to run the followin debugs

debug aaa authen

debug modem csm

debug modem

debug ppp neg

I would suggest just sticking to one method of dialin connectivity (terminal window, dialup networking) that way you don't have to have the user ID's in more than one place.

Daniel

dbellazetin@hotmail.com

i add the following command:

aaa authentication login mobile radius

line 1 120

login authentication mobile

when i use terminal window,the username/password can pass.

but after the terminal window it seems going to ppp authetication.Then fails.

that means when i use terminal window,i can't use "ppp authentication pap mobile" on "interface Group-Async0"?????

on this,if a user that i don't know dials in with dialup netwoking,he can pass without authentication.

why? how can i authenticate a user with two method(terminal window,dialup networking)

makchitale
Level 6
Level 6

Under the lines can you please add "login authentication adm"

Thanks, Mak.

Review Cisco Networking for a $25 gift card