HPE EVA Storage
1820882 Members
3416 Online
109628 Solutions
New Discussion юеВ

San Switch 4/16 RADIUS under Windows Server 2008 NAP

 
Philip Teale
Advisor

San Switch 4/16 RADIUS under Windows Server 2008 NAP

Hi,

We currently use the IAS component of Server 2003 to allow RADIUS authentication to our San Switches and this works great. (Once I had figured out the Vendor-Specific Attribute!).

We are now in the process of retiring our Server 2003 servers and implementing Server 2008. IAS no longer exists in Server 2008 and has been replaced with Network Access Protection (NAP), but it still offers RADIUS authentication. The problem is, although I have configured the Network Access Policy in NAP to be the same as the Remote Access Policy in IAS, my switches will no longer authenticate via RADIUS.

I have enabled logging on the Server 2008 machine but the logs are very detailed and I can find no information on interpreting them. I will supply them if necessary however.

Our San Switches are running Fabric OS 5.1.d.

I hope that someone has had some experience configuring NAP to allow RADIUS authentication and that they will be able to offer some advice.

Thanks

Phil
3 REPLIES 3
Steven Clementi
Honored Contributor

Re: San Switch 4/16 RADIUS under Windows Server 2008 NAP

Phil:

Not sure if this will help any, but your firmware is kinda out of date.

Brocade is up to 6.x firmware now and perhaps an upgrade might help your situation and/or provide more documentation for configuring for RADIUS.

" http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareIndex.jsp?lang=en&cc=us&prodNameId=1143933&prodTypeId=12169&prodSeriesId=1143930&swLang=8&taskId=135&swEnvOID=54 "

If you attempt the upgrade, it is likely you will first need to upgrade to 5.3.x before going to 6.x.x (Usually you can only upgrade to a firmware max 2 revisions away... 5.0.x --> 5.2.x, 5.1.x --> 5.3.x, etc.)


Steven
Steven Clementi
HP Master ASE, Storage, Servers, and Clustering
MCSE (NT 4.0, W2K, W2K3)
VCP (ESX2, Vi3, vSphere4, vSphere5, vSphere 6.x)
RHCE
NPP3 (Nutanix Platform Professional)
Philip Teale
Advisor

Re: San Switch 4/16 RADIUS under Windows Server 2008 NAP

Hi Steven

Thanks for your reply; I did suspect that our firmware was a bit long in the tooth. I am always reticent about doing this kind of thing on a live system (we don't have a test lab, suprise!). If all else fails I think I will need to go with an upgrade, and looking at the dates, 6.1.0d was released well after Server 2008. I think I will hold off in the hope that someone has the magic key, but if I don't get any joy I will take your advice and go for the update.

Thanks again.

Cheers

Phil
skris
Trusted Contributor

Re: San Switch 4/16 RADIUS under Windows Server 2008 NAP

Hi Philip,
I hope that during the configuration, you have unchecked the box for RADIUS Client is NAP capable. Otherwise there isn't any reason why this should not work.


Cheers!
Shiva