Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
525
Views
0
Helpful
1
Replies

aaa Radius login on 3560 locks domain-account

Ronny.Makoschey
Level 1
Level 1

‎07-23-2012 12:06 AM - edited ‎03-07-2019 07:54 AM

Hello at all!

I´ve a little problem with the aaa authentication over RADIUS with a Cisco 3560G-48PS - IOS 12.2(58)SE2.

When I try to log in to the Switch per Telnet, it didn`t works and my windows domain account is locked. Here the aaa config:


aaa new-model

aaa authentication login default local group radius

aaa authorization config-commands

aaa authorization network default group radius if-authenticated

radius-server host YYY.YYY.YYY.YYY auth-port YYYY acct-port YYY

radius-server host XXX.XXX.XXX.XXX auth-port XXX acct-port XXX

radius-server retransmit 1

radius-server key 7 XXXXXXXXXXXXXXXX

radius-server vsa send accounting

radius-server vsa send authentication

The same aa config runs at other switches without problems. Does anyone have an idea?

Thanks very much! :-)

Labels:
0 Helpful
1 Reply 1

cadet alain
VIP Alumni
VIP Alumni

‎07-23-2012 12:54 AM

Hi,

can you try this:

no aaa authentication login default local group radius

aaa authentication login default group radius local

Regards.

Alain.

Don't forget to rate helpful posts.

Don't forget to rate helpful posts.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card