Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1924
Views
0
Helpful
7
Replies

PROBLEM LOCAL AUTHENTICATION IN CISCO CATALYST 9200

Go to solution
motas
Level 1
Level 1

ā€Ž04-14-2023 11:13 AM 

Hello everyone, I have a cisco catalyst 9200, it has created an admin user with a defined password, but in addition to the admin user, when logging in with any other different credentials it works.

example :
user : XYZ
password: uhbfuew
It works, how to block it? I just want the admin user to be able to log into this device.

Follow config:
aaa authentication login default local group radius
aaa authorization exec default local group radius

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
motas
Level 1
Level 1

ā€Ž05-11-2023 05:11 AM

Hello everyone,

Sorry for the delay in response, the problem has been resolved, we identified that the security flaw was in the radius server, we removed it from the AAA settings on the switch and the problem was solved.

Previous configuration:

aaa authentication login default local group radius 

aaa authorization exec default local group radius

New configuration:

aaa authentication login default local 

aaa authorization exec default local

Thank you all for your help.

View solution in original post

0 Helpful
7 Replies 7

Go to solution
marce1000
VIP
VIP

ā€Ž04-14-2023 10:29 PM

 

 - Make sure to have a unique admin user defined in the running-config too as in :
                             username <admin_username> privilege 15

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

ā€Ž04-15-2023 12:14 AM

can you more elaborate what issue here >?

0 Helpful

Go to solution
motas
Level 1
Level 1
In response to MHM Cisco World

ā€Ž04-15-2023 11:29 AM

My equipment has only one user, which is the admin user, but when entering via ssh and placing any character, it allows it and enters user configuration mode.

motas_0-1681583376202.png

 

 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to motas

ā€Ž04-15-2023 12:17 PM

are you use ISE as radius server ??

0 Helpful

Go to solution
marce1000
VIP
VIP
In response to motas

ā€Ž04-15-2023 11:09 PM

 

           - Post the full running config of  the  9200 ,

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
motas
Level 1
Level 1

ā€Ž05-11-2023 05:11 AM

Hello everyone,

Sorry for the delay in response, the problem has been resolved, we identified that the security flaw was in the radius server, we removed it from the AAA settings on the switch and the problem was solved.

Previous configuration:

aaa authentication login default local group radius 

aaa authorization exec default local group radius

New configuration:

aaa authentication login default local 

aaa authorization exec default local

Thank you all for your help.

0 Helpful

Go to solution
abdelmadjid.gueffaz
Level 1
Level 1

ā€Ž05-11-2023 06:44 AM

Your device was trying to authenticate from a radius server and now you change it to local if you want to create a new user now just do this command username admin privilege15 secret yourpassword 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card