[RadiusNT] Cisco - RadiusNt Configuration

Awalnet Network Testing Department ( (no email) )
Mon, 9 Aug 1999 15:25:09 +0300

This is a multi-part message in MIME format.

------=_NextPart_000_00D8_01BEE27B.5DAE2060
Content-Type: text/plain;
charset="windows-1256"
Content-Transfer-Encoding: quoted-printable

Hello,
We are trying RadiusNt on One of our access servers.
we have a Cisco3640 ios v120-4.
We are running Radius NT 2.5.178 with SQL Server 6.5 in NTServer 4.0.
The Problem that we have is that when dialing from a dialup connection =
we have the message that "The computer is unable to negotiate with the =
set of protocols ...".
=20
Although on the debbugger prompt we have that the user was authenticated =
and started.

You will find below our Access server configuration.
We don't know if there are any misconfiguration on it. we appreciate any =
help.

Current configuration:
!
version 12.0
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname AccessServer
!
aaa new-model
aaa authentication login default radius
aaa authentication login no_tacacs enable
aaa authentication ppp default radius
aaa accounting exec default start-stop radius
aaa accounting network default start-stop radius
enable password xxxx
!
ip subnet-zero
ip name-server xxx.xx.xx.3
ip name-server xxx.xx.xx.4
!
ip address-pool local =20
interface Ethernet2/0
ip address xxx.xx.xx.6 255.255.255.248
no ip directed-broadcast
!
interface Serial2/0
no ip address
no ip directed-broadcast
no ip mroute-cache
!
interface Ethernet3/0
no ip address
no ip directed-broadcast
shutdown
!
interface Serial3/0
no ip address
no ip directed-broadcast
shutdown
!
interface Serial3/1
no ip address
no ip directed-broadcast
shutdown
!
interface Group-Async1
ip unnumbered Ethernet2/0
ip directed-broadcast
encapsulation ppp
no ip route-cache
ip tcp header-compression passive
no ip mroute-cache
async mode interactive
no peer default ip address
ppp authentication pap chap=20
group-range 1 16
!
ip local pool default xxx.xx.xxx.113 xxx.xx.xxx.126
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet2/0
no ip http server
!
radius-server host xxx.xx.xxx.29 auth-port 1645 acct-port 1646
radius-server key secret
!
line con 0
exec-timeout 0 0
password xxxx
logging synchronous
login authentication no_tacacs
transport input none
line 1 16
autoselect during-login
autoselect ppp
logging synchronous
login authentication no_tacacs
modem Dialin
transport input all
line aux 0
password an
line vty 0 4
password xxxx
! =20

------=_NextPart_000_00D8_01BEE27B.5DAE2060
Content-Type: text/html;
charset="windows-1256"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

Hello,
We are trying RadiusNt on One of our access=20servers.
we have a Cisco3640  ios =v120-4.
We are running Radius NT 2.5.178 with SQL =Server=206.5  in NTServer 4.0.
The Problem that we have is that when dialing =from a=20dialup connection  we have the message that "The =computer is=20unable to negotiate with the set of protocols =....".
 
Although on the debbugger prompt we have =that the=20user was authenticated and started.
 
You will find below our Access server=20configuration.
We don't know if there are any =misconfiguration on it.=20we appreciate any help.


  Current =configuration:
!
version=2012.0
service timestamps debug uptime
service timestamps log =uptime
no=20service password-encryption
!
hostname AccessServer
!
aaa=20new-model
aaa authentication login default radius
aaa =authentication login=20no_tacacs enable
aaa authentication ppp default radius
aaa =accounting exec=20default start-stop radius
aaa accounting network default start-stop=20radius
enable password xxxx
!
ip subnet-zero
ip name-server=20xxx.xx.xx.3
ip name-server xxx.xx.xx.4
!
ip address-pool=20local       
interface=20Ethernet2/0
 ip address xxx.xx.xx.6 255.255.255.248
 no =ip=20directed-broadcast
!
interface Serial2/0
 no ip=20address
 no ip directed-broadcast
 no ip=20mroute-cache
!
interface Ethernet3/0
 no ip =address
 no ip=20directed-broadcast
 shutdown
!
interface =Serial3/0
 no ip=20address
 no ip =directed-broadcast
 shutdown
!
interface=20Serial3/1
 no ip address
 no ip=20directed-broadcast
 shutdown
!
interface =Group-Async1
 ip=20unnumbered Ethernet2/0
 ip =directed-broadcast
 encapsulation=20ppp
 no ip route-cache
 ip tcp header-compression=20passive
 no ip mroute-cache
 async mode =interactive
 no=20peer default ip address
 ppp authentication pap chap=20
 group-range 1 16
!
ip local pool default xxx.xx.xxx.113=20xxx.xx.xxx.126
ip classless
ip route 0.0.0.0 0.0.0.0 =Ethernet2/0
no ip=20http server
!
radius-server host xxx.xx.xxx.29 auth-port 1645 =acct-port=201646
radius-server key secret
!
line con =0
 exec-timeout 0=200
 password xxxx
 logging synchronous
 login=20authentication no_tacacs
 transport input none
line 1=2016
 autoselect during-login
 autoselect =ppp
 logging=20synchronous
 login authentication no_tacacs
 modem=20Dialin
 transport input all
line aux 0
 password =an
line=20vty 0 4
 password=20xxxx
!          &nbs=p;            =;            =      =20

------=_NextPart_000_00D8_01BEE27B.5DAE2060--