Solved

setup radius authentication for AD groups

Posted on 2008-09-29
2
293 Views
Last Modified: 2013-12-24
Hello EE,

On my cisco routers, I have radius authentication setup to allow access into the router.  However, is there a way to permit access only if user is in Domain Admins AD group?  I don't want users getting to the "router>" prompt unless they are Domain Admins.

Thanks!
0
Comment
Question by:ifmtech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 11

Accepted Solution

by:
billwharton earned 400 total points
ID: 22601834
you would basically have to configure the router to check for 'allow dial-in' permission set up on the user's attributes and you'll have to individually set this dial-in permission for all the domain admins

Something similar to what's being discussed on this thread:
http://www.experts-exchange.com/Software/System_Utilities/Remote_Access/VPN/Q_21859657.html
0
 
LVL 1

Author Comment

by:ifmtech
ID: 22606673
Thanks for the information!

I also forgot that in the Radius Remote Access Policy I can specify Domain Admins as the WIndows Group.
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
These days, all we hear about hacktivists took down so and so websites and retrieved thousands of user’s data. One of the techniques to get unauthorized access to database is by performing SQL injection. This article is quite lengthy which gives bas…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question