Options

connect to router using SDM but using radius as authentication method

gouki2005gouki2005 Member Posts: 197
in CCNA Security

ip http secure-server
ip http authentication aaa login-authentication ENTER

so i am using the policy ENTER to do the authentication in SDM

aaa authentication login ENTER group radius
line vty 0 4
login authentication ENTER


but it doesnt work when SDM ask for level 15 user or vty user i cant access like if doesnt exist the server and the server is working but doesnt work with sdm if i change to ip http authentication localand i log in with my local user admin cisco SDM works its posible do this using radius as authentication method for SDM or just works with local database in fact almost all the examples out there use the ip http authentication local and thats it.
· Share on FacebookShare on Twitter

Comments

  • Options
    gregorio323gregorio323 Member Posts: 201 ■■■□□□□□□□
    under the line vty 0 4 you can add privilege level 15 that should work. make sure your username is set to privilege level 15. I'm not so good off top of my head. but i would recommend to install the SDM on your PC.
    · Share on FacebookShare on Twitter
  • Options
    gouki2005gouki2005 Member Posts: 197
    gregorio323 wrote: »
    under the line vty 0 4 you can add privilege level 15 that should work. make sure your username is set to privilege level 15. I'm not so good off top of my head. but i would recommend to install the SDM on your PC.
    yeah it worked for telnet but didnt work for the first log in screen that one who ask for a level 15 user or a View is that the privilige mode log in screen??? because i not using enable secret or enable password neither local database just winradius
    · Share on FacebookShare on Twitter
  • Options
    gregorio323gregorio323 Member Posts: 201 ■■■□□□□□□□
    I'm not sure what winserv your using but there's been cases where the RADIUS port do not match make sure to hard code the port number on the router if it's different than the default.

    maybe if you set this aaa authentication login default ENTER group radius this can also solve your problem.

    kinda more of a visual person i have to see the problem icon_sad.gif lol. so a lil lost
    · Share on FacebookShare on Twitter
  • Options
    gouki2005gouki2005 Member Posts: 197
    i understand now how it works aaa thx to cbt nuggets is to bad the ccna security focus just in the authentication and barely in the authorization and accounting i did a lab practice with the acs server in my college a really powerful software nothing like Winradius
    · Share on FacebookShare on Twitter
Sign In or Register to comment.