Re: Unable to access Radius server on HP Procurve 2610-24

Mar_10 · ‎05-25-2016

Dear all,

I configure my switch HP procurve 2610-24 to get authentication (SSH) access from a radius server.

The radius server is configured also (i add the Switch IP address as a client ).

this is my config on the Switch:

radius-server host X.X.X.X auth-port 1812 acct-port 1813 key ******
radius-server timeout 3
radius-server retransmit 1
aaa server-group radius freeradius host X.X.X.X

aaa authentication login privilege-mode
aaa authentication ssh login radius server-group freeradius local
aaa authentication ssh enable radius server-group freeradius local
aaa authorization commands radius
aaa accounting exec start-stop radius server-group freeradius

When connect with ssh and put my login/password it FAILS , but when i tape the command

# sh radius authentication i see that my request is accepted !!

Why the switch can't not login if i m authorized by the radius server ?

Michael Patmon · ‎05-25-2016

Hello. You have "aaa authorization commands radius" configured. Are you passing the authorized command strings for the user account? If you have that enabled and you do not provide the authorized commands access is rejected.

If you want to permit everything you can:

mpatmon Cleartext-Password := "password"
Service-Type = 6,
HP-Command-String =".*"

Or you can disable Radius command auth...

Also see the Access Security Guide for more info.

Mar_10 · ‎08-09-2016

I remove the command "aaa authorization commands radius", and it works fine

Thank you so much for the help

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: Unable to access Radius server on HP Procurve 2610-24

Unable to access Radius server on HP Procurve 2610-24

Re: Unable to access Radius server on HP Procurve 2610-24

Re: Unable to access Radius server on HP Procurve 2610-24