CISCO SWITCHES FOR SMALL and MEDIUM BUSINESS
Introducing the next generation of Cisco Small and Medium Business Switches. Cisco is refreshing its SMB Switch portfolio. Click here to learn more.
Hallo Community,
i have a big problem with my SG300 switch. I would like to implement Radius authentification for SSH Access via Radius.
The Radius server is a Windows Server 2008 R2 (NPS). The Switch and the Server can communicate.
On the radius server are the following settings confugured:
Service type 6
Cisco AV Pair shell:priv-lvl=15
I open a connection via putty for SSH access:
i use my domain login, right username and the right password. But i get the message: Authentification Failed
The radius server get the information that the access grant.
If i try a false password or a unkown user, i get a new change to use another user or password.
here are the Radius setting:
Can anybody help me?
Hi Markus, did you define the log in hierarchy to be RADIUS over log in on the switch? If you did not, local log in will take precedent over RADIUS until local log in is unable to operate then RADIUS would become active.
-Tom
Please mark answered for helpful posts
Hello, I'm having this same problem, did you ever find a solution?
I also had this problem, my solution was to set Service Type to: Adminstrative on my Windows NPS Radius servers., and of course, still the Vendor specific attribute of: Cisco AV Pair shell:priv-lvl=15