07-23-2019 10:07 AM
hello,
i m using cisco switch 3650 denali 16.3.x
i would like to use aaa authentication login radius + local
when i use radius acoount it works
when i use local user it s impossible to log on switch
how does failback work ?
i ve tried differents configuration nothing has changed
how you got any idea ?
Best regards
07-23-2019 10:41 AM
07-23-2019 10:42 AM
07-23-2019 02:52 PM
If you have configured as fall back as local user, to test this,
Go to radius, for this device disable radius, so this device no longer participate with radius, so local user works.
once all test done, put back radius enable,
10-18-2019 03:50 AM
Hello,
Normally this depends on the order of your AAA configuration , whilst the default way and recommended is either using tacacs / radius to administer device and to fall back to local login when AAA server is unreachable.
Also you can still use the same local user to log on to the switch if only you are using a sort of ACS / ISE as Radius /AAA Server . All you need to do is have the same local user and password configure on the mentioned radius server ( make sure is the same credential as on the switch). Aside all this , you will only be able to use ocal user when Radius Server is unavailable.
Let me know if this help you.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide