Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

radius on 3600 or more

tetzPeha
Advisor

radius on 3600 or more

Hello !

i have issue with radius protocol on switches.

When i replace a switch by another one, i copy past the same configuration, and radius is not working.

Everytime i tried to log with radius, switch ask to radius and ask after on local-system and reject me (i dont have local account) why the switch ask everytime on local after radius ?

%Sep 26 12:48:30:767 2017 sw-test-radius-240 SC/6/SC_AAA_LAUNCH: -AAAType=AUTHEN-AAAScheme= radius-scheme 802.1x-Service=login-UserName=paerrard@domain.net; AAA launched.


%Sep 26 12:48:39:761 2017 sw-test-radius-240 SC/6/SC_AAA_LAUNCH: -AAAType=AUTHEN-AAAScheme= local-Service=login-UserName=paerrard@domain.net; AAA launched.


%Sep 26 12:48:39:761 2017 sw-test-radius-240 LS/5/LS_AUTHEN_FAILURE: -AccessType=login-UserName=paerrard; Authentication is failed. User not found.

what are the good steps to activate and use radius on switch ?

here my conf :

domain default enable domain.net

radius scheme 802.1x
 server-type extended
 primary authentication 192.168.6.242
 primary accounting 192.168.6.242
 secondary authentication 10.75.4.46
 secondary accounting 10.75.4.46
 key authentication cipher XXXXX
 key accounting cipher XXXXX
 user-name-format without-domain

domain domain.net
 authentication login radius-scheme 802.1x local
 authorization login radius-scheme 802.1x local
 accounting login radius-scheme 802.1x local
 access-limit disable
 state active
 idle-cut disable
 self-service-url disable


domain system
 access-limit disable
 state active
 idle-cut disable
 self-service-url disable

 

thx a lot for your help