[nsp] Merit Radius and Cisco authorization
Hank Nussbacher
hank@att.net.il
Tue, 23 Jul 2002 11:26:51 +0300
At 09:09 AM 23-07-02 +0100, you wrote:
>Hi Hank,
>
>On my Merit RADIUS it is :
>
> Cisco:Cisco-Avpair = "shell:priv-lvl=15"
>
> ..and don't forget the comma after the second line.
Huh? Care to explain?
Looking at http://www.merit.edu/michnet/dial-in/aaa/faq.html#usrvsa and the
code we downloaded is 3.6B then we need to apply the patch. Where did you
get your version from?
-Hank
> If you debug the RADIUS you can see if it is happy with your
> Cisco AV-pair attribute or if it is "tossing" it.
>
> Regards,
>
> Richard
>
>
>
>
> > -----Original Message-----
> > From: Hank Nussbacher [SMTP:hank@att.net.il]
> > Sent: Tuesday, July 23, 2002 8:43 AM
> > To: cisco-nsp@puck.nether.net
> > Subject: [nsp] Merit Radius and Cisco authorization
> >
> > We are unable to get the Merit Radius to work properly with Cisco
> > authorization. Authentication works ok but authorization doesn't work:
> > seven Password = "eight"
> > Service-Type = Shell-User
> > Cisco-Avpair = shell:priv-lvl=15
> >
> > Can someone send a working Merit Radius server config and the Cisco
> > commands you use for authorization:
> > aaa authorization exec default radius if-authenticated
> >
> > Thanks,
> > Hank
> >
> > _______________________________________________
> > cisco-nsp mailing list
> > cisco-nsp@puck.nether.net
> > http://puck.nether.net/mailman/listinfo/cisco-nsp
>
>
>**********************************************************************
>This message may contain information which is confidential or privileged.
>If you are not the intended recipient, please advise the sender immediately
>by reply e-mail and delete this message and any attachments
>without retaining a copy.
>
>**********************************************************************