jasonmichel
asked on
RADIUS issue with cisco 2821
have a cisco 2821 that we are using for vpn gateway to do radius authentication to a 2008 DC, was working fine until we swapped out the old switches with new cisco switches and removed the vlan routing from the 2821 and moved it to a 4900. I double checked the ip in the config and the key, and i changed the client on the 2008 server to match the new internal ip of the router, and still geting wrong user id /password.. maybe i'm missing something. I'm attaching configs. Thanks in advance for any help
occh-scrub.txt
Core-4900-1---20110922-scrub.txt
netdiag.pdf
occh-scrub.txt
Core-4900-1---20110922-scrub.txt
netdiag.pdf
Soulja
This is your current config in production for the router? I though you put in your changes?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yeah I did make the changes, let me pull running config. I believe server has both ports, I'll double check
ASKER
here is the updated
courthouse-scrub.txt
courthouse-scrub.txt
I don't see anything that sticks out other than the radius ports, did you check whether your server is listening on those ports.
Try removing the acl from the vlan interface where the radius server sits as well as the vlan where the router sits. At least if it still don't work, it will rule out the ACL as the problem.
ASKER
Ok Both ports are listed. So just to test I configured ias on a 2003 server and changed ip to that in router and it worked, so must be npa issue. But working for now. Thanks
Cool!!