- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Re: Radius and Brocade 4Gb SAN Switch for HP c-Cla...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-08-2008 01:52 AM
тАО06-08-2008 01:52 AM
Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
When these users log in, they only have the users role. The follwing message is displayed after a login with telnet:
Switch role not specified, use default.
My radius server sents back the flag
AVP: l=6 t=Service-Type(6): Administrative-User(6)
(checked with wireshark packet sniffer) but the switch seams to ignore this.
How can I configure the admin role?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-08-2008 02:34 PM
тАО06-08-2008 02:34 PM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
you must be go to active directory server and go active directort users and computers in this page you see user account.
for make change role account (user or admin)
you make double clik on user and go to member of tab and attach this user administrator group on server
cenk
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-08-2008 11:18 PM
тАО06-08-2008 11:18 PM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
many thanks for the answer.
My radius server is not an Microsoft Active Directory Server. It is a RSA SecurID system, which has a built in radius server. I have made the analog configuration as you proposed with AD. And as written in my first post, the servers answers with the flag "Administrative-User(6)" (which is defined in the RFC).
So why is the switch not using this flag?
Regards,
Elmar
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-09-2008 09:41 AM
тАО06-09-2008 09:41 AM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
please send me your switch show tech command print.
cenk
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-09-2008 11:03 AM
тАО06-09-2008 11:03 AM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
you are speaking of the command "configshow" of the switch? I can run also a "supportshow" but the output is 1,5 MBytes long ;-)
I have XXXXX-ed the radius secrets.
Elmar
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-09-2008 11:16 PM
тАО06-09-2008 11:16 PM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
are you make speak which switch model ?
cenk
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-10-2008 02:40 AM
тАО06-10-2008 02:40 AM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
I'm not you help
cenk
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-30-2008 11:12 AM
тАО10-30-2008 11:12 AM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-30-2008 11:49 AM
тАО10-30-2008 11:49 AM
Re: Radius and Brocade 4Gb SAN Switch for HP c-Class BladeSystem
on Cisco IOS there is a similar pitfall in that configuring authentication (aaa authentication ...) is sufficient to get a login, but in order to actually get an elevated permission profile, you have to add authorization statements as well (aaa authorization ...). But the config you posted doesn't look like anything I've ever seen before and
> auth.policy:0
> auth.policy.dev:3
doesn't even reveal which of the first two As of AAA it's talking about or how it links to the configured RADIUS servers. So I can't help much but to point into this direction: look out for additional non-obvious authorization-related config options.
HTH,
Andre.