Hi Alan,
>> So the Cisco DOES receive the attributes in the reply packet, but
obviously
>> ignores them??
>
>what does your CISCO IOS config look like for radius ? It appears that you
may
>only have the authentication line and not the authorization line...eg
>
>aaa new-model
>aaa authentication lo
Hi,
> So the Cisco DOES receive the attributes in the reply packet, but obviously
> ignores them??
what does your CISCO IOS config look like for radius ? It appears that you may
only have the authentication line and not the authorization line...eg
aaa new-model
aaa authentication login default r
Hi again,
>The priv lvl I use in my users file is:
>
>Cisco-AVPair := "shell:priv-lvl=1"
>
>Debug output would help determine what isn't working.
>
>Kevin Bonner
here is a debug from my radius-server:
rad_recv: Access-Request packet from host 10.0.2.241:1645, id=9, length=76
NAS-
On Wednesday 10 May 2006 13:16, [EMAIL PROTECTED] wrote:
> Is the 'cisco-avpair' parameter misplaced, or should I look for the error
> on the CISCO-config (using IOS 12.1)?
>
> thanks alot
> thomas
The priv lvl I use in my users file is:
Cisco-AVPair := "shell:priv-lvl=1"
Debug output wo
Hi,
I hope someone can help me with that - I dont seem to be able to, after
hours of Googling and trying ... :-(
I want to allow an admin to login to a Cisco-box, authenticated via radius
and get immediately to privileged level ( so he doesnt have to do a
"enable" when he logged in to the box)
5 matches
Mail list logo