Switches, Hubs, and Modems
cancel
Showing results for 
Search instead for 
Did you mean: 

IAS (RADIUS) for SSH/Telnet Authentication

Jody_Greene
Occasional Advisor

IAS (RADIUS) for SSH/Telnet Authentication

Has anyone implemented this? I don't have a problem with the switch configuration... I am trying to figure out what needs to be setup on the RADIUS user for the switch to know who is a manager vs. operator.
2 REPLIES
Matt Hobbs
Honored Contributor

Re: IAS (RADIUS) for SSH/Telnet Authentication

On the switch you need to add 'aaa authentication login privilege-mode'

In IAS, you need to add a Service type:

Service-Type | Value | Client Access Level
--------------------------------------------
Administrative | 6 | Manager
NAS-Prompt | 7 | Operator
Jody_Greene
Occasional Advisor

Re: IAS (RADIUS) for SSH/Telnet Authentication

Unfortunately this allows anyone with an RADIUS account to access both operator & priveleged mode. How do I ensure that only certain RADIUS users have access?