Skip to content

Lab 1: RADIUS Authentication

January 15, 2012

Configure your Cisco router to authenticate users and EXEC mode against a RADIUS server. The RADIUS server is using a security key of mYP4$$w0rd. Create two users with privilege level 2 and 15.

It is up to you on what RADIUS server to choose although I use FreeRADIUS on Ubuntu for my lab work. I will post a configuration file soon with the answers.

Answer

Router1(config)# aaa new-model
Router1(config)# radius-server host 192.168.15.15 key mYP4$$w0rd
Router1(config)# aaa authentication login default group radius local
Router1(config)# aaa authentication exec default group radius enable

A little bit of a trick here. AAA authentication doesn’t specify the user level on the local system but instead has it on the RADIUS server. You will need to have exec users setup on the RADIUS server in addition to the administrative users. If you read my RADIUS authentication tutorial this should be pretty straight forward though.

Advertisements

From → Lab

Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s