Hello, I'm having this same

Markus Thun · ‎10-10-2013

Hallo Community,

i have a big problem with my SG300 switch. I would like to implement Radius authentification for SSH Access via Radius.

The Radius server is a Windows Server 2008 R2 (NPS). The Switch and the Server can communicate.

On the radius server are the following settings confugured:

Service type 6

Cisco AV Pair shell:priv-lvl=15

I open a connection via putty for SSH access:

i use my domain login, right username and the right password. But i get the message: Authentification Failed

The radius server get the information that the access grant.

If i try a false password or a unkown user, i get a new change to use another user or password.

here are the Radius setting:

Can anybody help me?

Tom Watts · ‎10-10-2013

Hi Markus, did you define the log in hierarchy to be RADIUS over log in on the switch? If you did not, local log in will take precedent over RADIUS until local log in is unable to operate then RADIUS would become active.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

tonybushong · ‎03-10-2017

Hello, I'm having this same problem, did you ever find a solution?

Dennis Nielsen · ‎03-13-2017

I also had this problem, my solution was to set Service Type to: Adminstrative on my Windows NPS Radius servers., and of course, still the Vendor specific attribute of: Cisco AV Pair shell:priv-lvl=15

SG300 Login Radius authentification