• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 371
  • Last Modified:

IAS and Cisco Switches RADIUS authentication using Active Directory

We are recently deploying  IAS on W2K3 to authenticate users via RADIUS, using the Active Directory credentials. We manage to authenticate Juniper Devices and some Cisco Routers, however, i'm having some issues with the Cisco Switches. The switches are running IOS 12.2 IOS. The think is after add the Cisco AV-Pair and the Vendor type settings for shell:priv-lvl=15, i can't get the user to go right away to the enable mode, then i have to enter the enable secret password configured locally.

Is there a way or work around about this? I have read a previous thread and it says it is not possible..
0
cmdaly
Asked:
cmdaly
1 Solution
 
Jody LemoineNetwork ArchitectCommented:
I would make sure that the switch is configured to do authorization against the RADIUS server to start.  Authentication will get the usernames and passwords to work, but authorization needs to be present in order to assign privilege levels.
0
 
cmdalyAuthor Commented:
Migrated to 2008 Server and running fine from NPS instead...
0

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now