Problem with Radius authorization on switches S5700-48TP-PWR-SI and S2710-52P-SI

Created Jun 10, 2016 16:07:25Latest reply Jun 14, 2016 17:02:08 1084 2 0 0

Hello!

We have problem with Radius authorization on switches S5700-48TP-PWR-SI and S2710-52P-SI-AC.

After I had logged in with my domain account (test\admin) I can get only user rights on a switch (system-view and other high privilege level commands are unavailable).
The same configuration on S5324TP-SI-AC and S5328C-EI works fine without any problems:

domain test
aaa
authentication-scheme default
authentication-scheme test
  authentication-mode radius local
authorization-scheme default
authorization-scheme test
accounting-scheme default
domain-name-delimiter \
domain-location before-delimiter
domain default
domain default_admin
domain test
  authentication-scheme test
  authorization-scheme default
  radius-server  radius

radius-server template radius
radius-server shared-key cipher XXXXXXXXXXXXXXXXXXXXXXXXXXXXX
radius-server authentication 10.10.10.10 1812

stelnet server enable

ssh user test\admin
ssh user test\admin authentication-type password
ssh user test\admin service-type all

user-interface vty 0 4
authentication-mode aaa
protocol inbound ssh

Software versions
Works fine
S5324TP-SI-AC: Version 5.150 (V200R005C00SPC300)
S5328C-EI: Version 5.150 (V200R005C00SPC300)

View only problem
S5700-48TP-PWR-SI: Version 5.130 (V200R003C00SPC300)
S2710-52P-SI-AC:  Version 5.70 (S2710 V100R006C05)

Please, how can I fix this?

Best regards!

  • x
  • convention:

who_knows  Mentor   Created Jun 12, 2016 10:01:33 Helpful(0) Helpful(0)

under "user-interface vty 0 4" add one command "user privilege 15"
  • x
  • convention:

beloblgaz     Created Jun 14, 2016 17:02:08 Helpful(0) Helpful(0)

Reply 2 #

Ashes on my head! This helped! =)

Thank you very much!

  • x
  • convention:

Responses

Reply
You need to log in to reply to the post Login | Register

Notice:To ensure the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but not limited to politically sensitive content, content concerning pornography, gambling, drug abuse and trafficking, content that may disclose or infringe upon others' intellectual properties, including commercial secrets, trade marks, copyrights, and patents, and personal privacy. Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see“ Privacy Policy.”
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Fast reply Scroll to top