Switches, Hubs, and Modems
cancel
Showing results for 
Search instead for 
Did you mean: 

nortel BayStack 5510 and IAS

ituser
Frequent Advisor

nortel BayStack 5510 and IAS

Hi
We have nortel Baystack switches 5510 and RADIUS Server(windows 2003 server "IAS") to authenticate switch access.we configured the Nortel switch as a RADIUS client in IAS. Used the same shared secret on both the switch and the IAS server.In remote access policy, used EAP as authentication method.
but it didn't work
is there anything missing here?
thanks
3 REPLIES
Mohieddin Kharnoub
Honored Contributor

Re: nortel BayStack 5510 and IAS

Hi

Usually in RADIUS authentication, you need to be sure of the following:

-You must have the RADIUS server accessible to the switch.
-In the switch check if the EAP RADIUS uses MD5 and TLS to encrypt a response to a challenge from a RADIUS server.
-Be sure that the shared secret is correct in both switch and the RADIUS.

-Now for the configuration part on the switch, usually with ProCurve, we configure the RADIUS server, and test connectivity then
we turn on the switch as authenticator on the ports we want, and other parameters are there like Vlans and other stuff.

For you and to troubleshoot this, turn on the Syslog on your switch and forward all the messages to any PC (use any free Syslog servers) and use also the Event Viewer on Windows and check authentication messages.

If you can get some messages from the switch and from the Event Viewer, attach it here so we can work it out together.

Good Luck !!!
Science for Everyone
ituser
Frequent Advisor

Re: nortel BayStack 5510 and IAS

Hi Mohieddin
Thanks for your reply
Well I need to know exactly what to put in the remote access policy because the warning in the event viewer says "connection attempt didn't match any connection request policy" no matter what I do?
Regards
Hala
Matt Hobbs
Honored Contributor

Re: nortel BayStack 5510 and IAS