Solved

bypass authentication on cisco access server

Posted on 2008-10-09
1
644 Views
Last Modified: 2012-05-05
Dear All,
i have a cisco AS5300 configured as following

my problem is that the IAS server crashed so for now i want to allow people to connect without authentifcation, what do i need to change in my configuration

---Part of the configuration---
!
aaa authentication login default enable
aaa authentication login console none
aaa authentication login vty line enable
aaa authentication ppp default none
aaa authorization network default group radius local
aaa accounting delay-start
aaa accounting update periodic 3 jitter maximum 0
aaa accounting exec default start-stop group radius
aaa accounting network default start-stop group radius
aaa session-id common
ip subnet-zero
...

radius-server host X.X.X.X auth-port 1645 acct-port 1646 key 7 105C081D0E181E07
---End of configuration---

where X.X.X.X is my radius server that crashed

Thanks
0
Comment
Question by:lemaitre75
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 22677662
change
aaa authorization network default group radius local

to
aaa authorization network default group radius none

The word after radius "local/none" says what to use if radius is not available. Currently is set to use local username/password setup on the device itself, but that only works if the username/password is the same in radius and local. The better choice may be "none"
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now