Hi,
Im trying to setup router authentication and accounting (for remote access
and NOT dialin) on my cisco's. My test box is a 2507 12.0(15) and im using
radius to authenticate.
Im able to login to my router using my radius account. However, i like
to keep track of all commands executed by that particular user.
Ive seen this setup work on tacacs+, but would like to do it on radius.
Here are some of my debug stuff...
01:07:43: AAA/ACCT/EXEC/START User paulp, port tty2
01:07:43: AAA/ACCT/EXEC: Found list "default"
01:07:55: AAA/ACCT/CMD: User paulp, Port tty2, Priv 15:
"show configuration <cr>"
01:07:55: AAA/ACCT/CMD: Found list "default"
01:08:07: RADIUS: unsupported accounting type 3 for user ""
^^^^^^^^^^^^^^^^^^^^^^^
It seems that it is radius thats having problems but has anyone been able
to solve this?
Here are my cisco configs
aaa new-model
aaa authentication login default radius line
aaa authentication login None none
aaa accounting exec default start-stop radius
aaa accounting commands 15 default start-stop radius
radius-server host 10.1.1.1 auth-port 1645 acct-port 1646 non-standard
radius-server key testing
Radius is configured to accept accounting packets at 1646.
Cheers,
Paul P. Pongco
Mosaic Communications Inc.
This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:50 EDT