Re: PPP and AAA issue

h.wall · ‎05-18-2005

I am using ddr for my backup lines. On my routers I have ppp and chap to secure the isdn dialins. I have configured AAA recently to set a little more security for the users logging into the routers. I am now having a confilt with AAA overriding PPP. The error log is bellow. How do you configure DDR with ppp/chap authentication but use AAA at the same time.

Usernames are configured on both sides and have been double checked.

May 18 11:19:20: %LINK-3-UPDOWN: Interface BRI2/0:1, changed state to up

May 18 11:19:20: BR2/0:1 PPP: Using dialer call direction

May 18 11:19:20: BR2/0:1 PPP: Treating connection as a callout

May 18 11:19:20: BR2/0:1 PPP: Authorization NOT required

May 18 11:19:20: BR2/0:1 CHAP: O CHALLENGE id 114 len 29 from "ELMHURST"

May 18 11:19:20: BR2/0:1 CHAP: I CHALLENGE id 199 len 29 from "CENTRAL1"

May 18 11:19:20: BR2/0:1 CHAP: Using hostname from unknown source

May 18 11:19:20: BR2/0:1 CHAP: Using password from AAA

May 18 11:19:20: BR2/0:1 CHAP: O RESPONSE id 199 len 29 from "ELMHURST"

May 18 11:19:20: BR2/0:1 CHAP: I FAILURE id 199 len 26 msg is "Authentication fa

Richard Burts · ‎05-18-2005

Harris

It might help if we knew some details about how your routers are configured. But I am going to guess that when you configured aaa you have specified aaa authentication login default and have not specified anything in aaa for ppp. If that is the case I suggest that you add to the configuration:

aaa authentication ppp default if-needed local

Try this and let us know what happens.

If it does not fix the problem then it would be helpful if you would post the configuration that you are using for ddr and for aaa.

HTH

Rick

HTH

Rick

h.wall · ‎05-19-2005

That works. Thanks alot.