Solved

AAA/Radius server for CISCO device

Posted on 2006-07-10
11
3,354 Views
Last Modified: 2007-12-19
We are looking for good AAA/Radius package that can support Cisco ASA, PIX, Switch and Route, Please recommand some venders other than CISCO Radus ACS package.

Thanks,
0
Comment
Question by:joehuang
  • 3
  • 2
  • 2
  • +3
11 Comments
 
LVL 9

Expert Comment

by:NYtechGuy
Comment Utility


still the best - Steel Belted Radius
http://www.juniper.net/customers/support/products/sbr_series.jsp

- It was purchased by Juniper Networks, so has been renamed - but always been the best.

/Justin
0
 
LVL 3

Expert Comment

by:JJT2750
Comment Utility
I agree Steel Belted is the way to go.  

I don't know if you are looking for a replacement for your Cisco AAA server or a new installation read the Docs and make sure it will do what you want it to do.

I found that some things it does better and some things it doesn't do.  

Overall Steel Belted is my choice.
0
 
LVL 9

Expert Comment

by:jjoseph_x
Comment Utility
It depends on what you want to do.  Micrsoft IAS isn't the most full-featured RADIUS server in the world, but for many applications it gets the job done (and it's included in Windows 2000/2003).

For more advanced stuff like 802.1x port-based VLAN authentication, Steel Belted is probably the best.
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
Agree with jjoseph_x
IAS comes with all Windows 2k/2k3 servers and integrates very well with Active Directory and is very easy to set up.

Steel Belted really is the defacto 'standard' and much less expensive than Cisco's ACS
0
 
LVL 9

Expert Comment

by:NYtechGuy
Comment Utility

you guys are all right on IAS - the price is right and the product works great for a lot of stuff.  I use it for VPN client authentication at a few clients and never had an issue.



0
Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

 
LVL 1

Expert Comment

by:rootcoolk
Comment Utility
adial RADIUS server is servicing ISPs since 1997. High-end ISP's with millions of subscribers and Smaller providers can easily integrate Aradial into their IT and Network infrastructures.

Aradial offers products that open a whole new set of possibilities for ISPs and Hot Spot (WiFi), ASPs, Wireless LAN and Mobile operators.

http://www.aradial.com/
0
 
LVL 1

Expert Comment

by:rootcoolk
Comment Utility
If you looking for open source FreeRADIUS is the premiere open source RADIUS serve
right one to use
I believe that FreeRADIUS is well within the top 5 RADIUS servers world-wide

http://www.freeradius.org/
0
 

Author Comment

by:joehuang
Comment Utility
We do use IAS for Microsoft VPN, it works just fine; but it seems the IAS does not function for accounting purpose with Cisco ASA device, IAS does good authenticaton with Cisco ASA; does any one check the log file of the IAS? my start time and stop time are always same, therefore I can not get duration time for the user, it is the reason I am looking into other solution.
0
 
LVL 9

Accepted Solution

by:
jjoseph_x earned 50 total points
Comment Utility
I'm able to use accounting with my IAS and my PIX just fine.
For the Cisco ASA did you use the "aaa accounting" command to enable the accounting?
0
 

Author Comment

by:joehuang
Comment Utility
jjoseph - thanks, it helps with the command
0
 
LVL 9

Expert Comment

by:jjoseph_x
Comment Utility
no problem :-)
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now