cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

AAA AUthentification login - configuration

josedunet
Beginner
Beginner

Hello all,

I would like to configured AAA Radius Authentication for cisco equipment access. The radius server is connected to windows Active Directory to check the username/password.

My worry is that if I simply configure aaa, all users who are in Active Directory will be able to connect to equipment at the time. 

I would like to know if there is not a way to configure aaa with radius + AD specifying that only a specific group of Active Directory users can be connected to the equipment?

Thank you in advance.

2 REPLIES 2

Florin Barhala
Frequent Contributor
Frequent Contributor

Configuration takes two steps: router config and AD Radius config. On Windows side you will specify a Security Group that will be used by the router to authenticate, and on that group you will add only the required users.

Thanks Florin,

Please could you help me to have a procedure that describes the configuration was made on the router and on the active directory?

Thanks in advance.

Best Regards,

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: