Re: Vendor Specific Attributes

Dave Helton ( (no email) )
Tue, 17 Jun 1997 09:43:32 +0000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Previous message: Matt Bondy: "RadiusNT Pricing & Availability"
Next message: <Ù: "mail failed, returning to sender"
Next message: <Ù: "mail failed, returning to sender"
Next message: Dan Milam: "Error registering file during installation."
Maybe in reply to: Jim Elder: "Vendor Specific Attributes"
Next in thread: Jim Elder: "RE: Vendor Specific Attributes"

Hi Jim,

I have a cisco also. Using .60 version of RadiusNT
Mine did not work right out of the box, however...
I configured the cisco for radius authentication and
accounting. Entered the secret, and set dialin authentication
to pap, NOT CHAP! I used UltraEdit to edit the users file
because some of the other editors I used were not as clean
with tabs and spaces... very important when editing the
user file.

I did not have to change the dictionary though.
the one that came with RadiusNT worked fine. I downloaded
the Access Upsizing Tool from MS and used it to upload the
Access database to our SQL server. This installed the same
dictionary that the flat files use. My system now does
auth/acct'g on the SQL server. We use Access for updates and
reporting. All works fine.

Nothing special about using a cisco to talk to RadiusNT.
Below is my config for our 2511's I've edited out anything
specific to our domain.

Hope this helps.

--Dave

------------------------------------------------------

Current configuration:
!
version 11.1
service slave-log
service linenumber
service udp-small-servers
service tcp-small-servers
!
hostname myhost.ourdomain.net
!
aaa new-model
aaa authentication local-override
aaa authentication login dialin local
aaa authentication login dialups radius
aaa authentication login admins local
aaa authentication ppp dialups radius
aaa authentication ppp admins local
aaa authorization network radius if-authenticated none
aaa accounting network start-stop radius
enable secret 5 xxxxxxxxxxxxxxx
enable password xxxxxxxx

~
~
line 1
location dialup1
access-class 99 in
access-class 99 out
no exec
exec-timeout 0 0
autoselect during-login
autoselect ppp
absolute-timeout 360
session-limit 1
login authentication dialups
modem Dialin
modem autoconfigure hayes_v34
stopbits 1
rxspeed 115200
txspeed 115200
flowcontrol hardware

~
~
!
interface Async1
description dialup1
ip unnumbered Ethernet0
ip access-group 99 in
ip access-group 99 out
ip accounting access-violations
ip tcp header-compression passive
encapsulation ppp
bandwidth 115200
async default routing
async dynamic address
async mode dedicated
peer default ip address xxx.xxx.xxx.xxx
dialer-group 1
no cdp enable
ppp authentication pap callin dialups
!

###################################################
Dave Helton System Admin CSX.NET
Circumspect Corporation dave@csx.net
902 East River Drive Davenport, IA 52803
Business: 319-323-6313 Fax: 319-323-3415
CSX.net Home Page http://www.csx.net
###################################################

Previous message: Matt Bondy: "RadiusNT Pricing & Availability"
Next message: <Ù: "mail failed, returning to sender"
Next message: <Ù: "mail failed, returning to sender"
Next message: Dan Milam: "Error registering file during installation."
Maybe in reply to: Jim Elder: "Vendor Specific Attributes"
Next in thread: Jim Elder: "RE: Vendor Specific Attributes"