05-09-2008 07:36 AM
Hi,
I am using Cisco 3845 as a dialup router. All config is fine but i stuck at aaa configuration. Even the Local dataabse on Router is not auth. output of debug command is:
*May 9 05:48:59.819: AAA/ACCT/EVENT/(0000004B): EXEC DOWN
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): Update As2/20
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): As2/20 [pre-sess] (rx/tx) base 0/0 pre 0/0 call 0/0
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): As2/20 [pre-sess] (rx/tx) adjusted, pre 0/0 call 0/0
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): Update As2/20
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): As2/20 [sess] (rx/tx) base 0/0 pre 0/0 call 0/0
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): As2/20 [sess] (rx/tx) adjusted, pre 0/0 call 0/0
*May 9 05:49:01.819: AAA/ACCT/HC(0000004B): Deregister As2/20
*May 9 05:49:01.819: AAA/ACCT/EVENT/(0000004B): CALL STOP
*May 9 05:49:01.819: AAA/ACCT/CALL STOP(0000004B): Sending stop requests
*May 9 05:49:01.819: AAA/ACCT(0000004B): Send all stops
*May 9 05:49:01.819: AAA/ACCT/NET(0000004B): STOP
*May 9 05:49:01.819: AAA/ACCT/NET(0000004B): Method list not found
*May 9 05:49:01.819: AAA/ACCT(0000004B): del node, session 70
*May 9 05:49:01.819: AAA/ACCT/NET(0000004B): free_rec, count 0
*May 9 05:49:01.819: AAA/ACCT/NET(0000004B) reccnt 0, csr TRUE, osr 0
*May 9 05:49:01.819: AAA/ACCT/NET(0000004B): Last rec in db, intf not enqueued
*May 9 05:49:02.887: %ISDN-6-DISCONNECT: Interface Serial4/0:2 disconnected from 0219215320 , call lasted 45 seconds
Can anyone explain or pointing to any relevant site for basic configuration?
Thanks in advance.
05-09-2008 08:16 AM
Can you post your AAA and 'line' configuration?
05-09-2008 08:23 AM
It's very basic currently,
aaa new-model
aaa authentication login default local
aaa authentication ppp default local
aaa authorization network default local
aaa session-id common
username new password new
controller E1 3/0
pri-group timeslots 1-31
interface Serial3/0:15
ip unnumbered GigabitEthernet0/1
encapsulation ppp
dialer wait-for-line-protocol 20
dialer-group 1
isdn switch-type primary-net5
isdn incoming-voice modem
peer default ip address pool old
fair-queue 64 256 0
no cdp enable
ppp authentication pap
ppp multilink
interface Group-Async1
no ip address
encapsulation ppp
no ip mroute-cache
dialer in-band
dialer idle-timeout 5000
dialer wait-for-line-protocol 20
async mode interactive
peer default ip address pool old
no fair-queue
ppp max-bad-auth 3
ppp multilink
group-range 1 1/29
line 1/1 1/29
session-timeout 35791
exec-timeout 596 31
no flush-at-activation
absolute-timeout 1000
modem InOut
modem autoconfigure discovery
transport input all
autoselect during-login
autoselect ppp
all the relevant config is also there.
Hope u can help. User stuck on 'Verifying username password'
05-09-2008 08:52 AM
I believe that "no login" will prevent the line from trying to auth.
05-09-2008 04:05 PM
Is the incoming call an exec call or a ppp call? Exec typically is when you want to dial into a router for OOB management.
I am assuming it's ppp, in that case please add "ppp authentication pap" under "interface Group-Async1"
A couple of good docs on basic configuration:
http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080093c81.shtml
http://www.cisco.com/en/US/tech/tk59/technologies_configuration_example09186a00800fa54a.shtml
If it does not work then will suggest some debugs to capture.
Thanks, Mak
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide