Solved

Netgear GS748TS Switch Radius setup with IAS

Posted on 2010-09-21
3
1,454 Views
Last Modified: 2012-08-14
I have a Netgear GS748TS Smart Switch which I am trying to setup to use Radius authentication using IAS on Windows Server 2003 R2.  Its not working.  Could anyone check the steps I have taken so far and give me a clue as to what I might be missing ?

I want users in the Domain Admin group to be able to access the switch using their domain credentials.

Config on Netgear GS748TS Switch

Security -> Radius
      Added RADIUIS Host IP Address
      Authentication Port 1812 (Default)
      Retries 3 (Default)
      Timeout 3 (Default)
      Dead Time 1
      Key String TEST
      Usage Type Login
      Active Primary

Security -> Authentication List
      1=Radius 2=Local

Config on IAS (v 5.2.3790.3959 Running on Windows Server 2003 R2)

Created Radius Client
      Added switch IP address
      Client-Vendor = Radius Standard
      Added shared secret
      Message Authenticator Attribute not ticked

Created Remote Access Policies
      Created Custom Policy
      Added Policy Condition
            Windows Groups
                  Domain Admins
      Grant Permission

With the above config, the switch prompts only for a password when connecting to the web gui - I was expecting it to prompt for a username as well (so I could log in with domain credentials).
0
Comment
Question by:Suncore
  • 2
3 Comments
 
LVL 33

Accepted Solution

by:
digitap earned 500 total points
ID: 33732051
Edit your remote access policy.  when you do, you'll have a button called Edit Profile.  Click the Authentication tab and identify which boxes are ticked.  Also, do the same for Encryption.

i've not setup IAS for a switch before, but have for VPN authentication.  i have to tick the last box under the authentication tab and remove the ticks for the other boxes.  i check all the boxes under encryption.
0
 
LVL 2

Author Closing Comment

by:Suncore
ID: 33732067
You are the man. Thanks. PAP was not selected, is now - works great :)
0
 
LVL 33

Expert Comment

by:digitap
ID: 33732121
Thanks!  Glad I could help and thanks for the points!
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Suggested Solutions

I eventually solved a perplexing problem setting up telnet for a new switch.  I installed a new Cisco WS-03560X-24P switch connected to an existing Cisco 4506 running a WS-X4013-10GE Sup II-Plus. After configuring vlans and trunking,  I could no…
There are times where you would like to have access to information that is only available from a different network. This network could be down the hall, or across country. If each of the network sites have access to the internet, you can create a ne…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now