Re: AAA Radius authentication with active directory

asdrewaqf · ‎12-27-2023

Hello Everyone,

im currently facing the weird issue, which is that I've cisco switches 200G and 300 G, and im working on configuring the AAA with radius server "NPS" to authenticate the login from the AD okay,

I've configured the AAA radius configuration on the switch without any issues, the SW and NPS servers are communicating normally with no restrictions at all

Radius configuration is configured well, can communicate with the Domain Controller,

now whenever I try to test let's say I'll enter an invalid username or password it shows that on the NPS logs:-

when i try to enter the correct username and password it shows nothing on the NPS logs which means that everything is okay, but I still haven't got access to the switch with the result authentication fail tho!!

Has anybody faced such an issue before?

MHM Cisco World · ‎12-27-2023

Can you share config of SW

MHM

asdrewaqf · ‎12-28-2023

HYG

asdrewaqf · ‎12-28-2023

MHM Cisco World · ‎12-28-2023

change type to login not all
MHM

asdrewaqf · ‎01-01-2024

Hello MHM Cisco World, I've changed it to Login but still the same issue persists, I've also tried another switch, nothing change tho,

asdrewaqf · ‎12-28-2023

and this is the logs from the NPS whenever I enter the correct username and password

MHM Cisco World · ‎01-01-2024

https://www.cisco.com/c/en/us/support/docs/smb/switches/cisco-small-business-200-series-managed-switches/smb102-radius-configuration-on-the-200-300-series-managed-switches.html

in mgmt access method did you select the Radius ?
MHM

asdrewaqf · ‎01-02-2024

THANK YOU GUYS, it worked after many days of troubleshooting the issue was on the service-type on the NPS: I was adding it to "Login" However when I tried to change it to administrative it worked normally!!, however, the NPS guide said to set it to login!

MHM Cisco World · ‎01-02-2024

Thanks alot for update us

Glad your issue solved

Happy new year

MHM