Major incidents can send mastered service desk processes into disorder. Systems and tools produce the data needed to resolve these incidents, but your challenge is getting that information to the right people fast. Check out the Survival Guide and begin bringing order to chaos.
Course Of The Month
7 days, 1 hour left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Cisco 3548 XL
Posted on 2013-01-06
Hi,
I have setup Radius Authentication but when I try to encrypt the password it fails to
Authenticate,
With the following.
radius-server host 10.42.7.110 auth-port 1645 acct-port 1646 key thispassword
The user account logons without any problems.
But when I encrypt the password.
radius-server host 10.42.7.110 auth-port 1645 acct-port 1646 key 7 *****
It fails to authenticate.
Am I missing something or is there any easier way ? Its only the 3548-XL I have this problem on.
Thanks in advance,
I have setup Radius Authentication but when I try to encrypt the password it fails to
Authenticate,
With the following.
radius-server host 10.42.7.110 auth-port 1645 acct-port 1646 key thispassword
The user account logons without any problems.
But when I encrypt the password.
radius-server host 10.42.7.110 auth-port 1645 acct-port 1646 key 7 *****
It fails to authenticate.
Am I missing something or is there any easier way ? Its only the 3548-XL I have this problem on.
Thanks in advance,
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
6-
4
2- +1
13 Comments
Active 1 day ago
Can you point out where you can use a encrypted key for RADIUS? I have alway just specified "key value" and I checked a few places and don't seem to see anything that says you can do "key 7 encryptedvalue".
It seems like the following may be your issue. When you specify an encrypted key with '7', you need to paste a encrypted key, not the plain text key that you're expecting to be encrypted because you use a 7.
What you're looking for and what will work, is pasting the key with the following syntax:
radius-server host 10.42.7.110 auth-port 1645 acct-port 1646 key 0 ciscokey (plain text)
Service password-encryption (this will disguise the key in the config with random hash)
Now the key will be encrypted in the config.
If you have a legit encrypted key that looks like , 07AfeR20AbC, then you would use the 7 and paste the encrypted key. Hope this helps you.
What you're looking for and what will work, is pasting the key with the following syntax:
radius-server host 10.42.7.110 auth-port 1645 acct-port 1646 key 0 ciscokey (plain text)
Service password-encryption (this will disguise the key in the config with random hash)
Now the key will be encrypted in the config.
If you have a legit encrypted key that looks like , 07AfeR20AbC, then you would use the 7 and paste the encrypted key. Hope this helps you.
Active 1 day ago
Yes, Leeeee is correct. If radius-server key supports accepts encrypted keys, then the value after the 7 must be the encrypted value.
However, that would only be used if you don't know what the clear text value is and you have saved the encrypted value. IOS will store any key values encrypted once you specify service password-encryption.
However, that would only be used if you don't know what the clear text value is and you have saved the encrypted value. IOS will store any key values encrypted once you specify service password-encryption.
Active 2 days ago
Hi,
When using the key 7 I am using an encrypted value which instantly stops radius
from working.
When I use Service password-encryption the AAA password remains plain text in the
config.
Its only the 3458-XL thats having a problem all other 2900's etc take the config without
any errors, This switch also doesn't support ssh.
This is the version c3500XL-c3h2s-mz.120-5.WC5
When using the key 7 I am using an encrypted value which instantly stops radius
from working.
When I use Service password-encryption the AAA password remains plain text in the
config.
Its only the 3458-XL thats having a problem all other 2900's etc take the config without
any errors, This switch also doesn't support ssh.
This is the version c3500XL-c3h2s-mz.120-5.WC5
Active 2 days ago
The most recent level of code for the 3548XL is c3500xl-c3h2s-mz.120-5.WC17.bin
Cause the switch to randomly to reboot.
Active 2 days ago
When I use Service password-encryption the AAA password remains plain text in the
config.
config.
Active 1 day ago
We have 2 3548's left. One is running c3550-ipservicesk9-mz.122-
Both show the passwords encrypted.
Both show the passwords encrypted.
Active 1 day ago
Opps, my fault, its not. We apparently replaced the 3548 with a 3550 and somebody didn't update the doc. Didn't even thing about it when I did the show ver.
So our ONLY 3548 left is running c3500xl-c3h2s-mz.120-5.WC1
So our ONLY 3548 left is running c3500xl-c3h2s-mz.120-5.WC1
Active 2 days ago
Is there some 3548 hardware versions that cannot support later IOS.
These switches run c3500xl-c3h2s-mz.120-5.WC5
As soon as I replace this with c3500xl-c3h2s-mz.120-5.WC1
constantly.
These switches run c3500xl-c3h2s-mz.120-5.WC5
As soon as I replace this with c3500xl-c3h2s-mz.120-5.WC1
constantly.
I do remember something faint about different memory size (4M/8M?), but that may have been the 2900XL series...
Check the MD5 of your .WC17 image, make sure it's not corrupt? Possibly format the flash of the switch before uploading new image?
Check the MD5 of your .WC17 image, make sure it's not corrupt? Possibly format the flash of the switch before uploading new image?
Featured Post
Coming soon! Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This tutorial will go through the steps required to write a script that will back up the configuration settings of a HP-ProCurve switch.
You will need to get the following things to follow this tutorial:
Telnet Scripting Tool e.g. TST10.exe
…
I eventually solved a perplexing problem setting up telnet for a new switch. I installed a new Cisco WS-03560X-24P switch connected to an existing Cisco 4506 running a WS-X4013-10GE Sup II-Plus.
After configuring vlans and trunking, I could no…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
- Document Management
- Printers and Scanners
- Document Imaging
- Software-Other
- Images and Photos
- Adobe Acrobat, Photos / Graphics Software, Security, OCR, *PDF
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Suggested Courses
Course of the Month7 days, 1 hour left to enroll
726 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.