Problem with Radius authorization on switches S5700-48TP-PWR-SI and S2710-52P-SI

Latest reply: Jun 14, 2016 09:02:08 1194 2 0 0

Hello!

We have problem with Radius authorization on switches S5700-48TP-PWR-SI and S2710-52P-SI-AC.

After I had logged in with my domain account (test\admin) I can get only user rights on a switch (system-view and other high privilege level commands are unavailable).
The same configuration on S5324TP-SI-AC and S5328C-EI works fine without any problems:

domain test
aaa
authentication-scheme default
authentication-scheme test
  authentication-mode radius local
authorization-scheme default
authorization-scheme test
accounting-scheme default
domain-name-delimiter \
domain-location before-delimiter
domain default
domain default_admin
domain test
  authentication-scheme test
  authorization-scheme default
  radius-server  radius

radius-server template radius
radius-server shared-key cipher XXXXXXXXXXXXXXXXXXXXXXXXXXXXX
radius-server authentication 10.10.10.10 1812

stelnet server enable

ssh user test\admin
ssh user test\admin authentication-type password
ssh user test\admin service-type all

user-interface vty 0 4
authentication-mode aaa
protocol inbound ssh

Software versions
Works fine
S5324TP-SI-AC: Version 5.150 (V200R005C00SPC300)
S5328C-EI: Version 5.150 (V200R005C00SPC300)

View only problem
S5700-48TP-PWR-SI: Version 5.130 (V200R003C00SPC300)
S2710-52P-SI-AC:  Version 5.70 (S2710 V100R006C05)

Please, how can I fix this?

Best regards!

  • x
  • convention:

who_knows
Created Jun 12, 2016 02:01:33 Helpful(0) Helpful(0)

under "user-interface vty 0 4" add one command "user privilege 15"
  • x
  • convention:

beloblgaz
Created Jun 14, 2016 09:02:08 Helpful(0) Helpful(0)

Reply 2 #

Ashes on my head! This helped! =)

Thank you very much!

  • x
  • convention:

Reply

Reply
You need to log in to reply to the post Login | Register

Notice Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Login and enjoy all the member benefits

Login and enjoy all the member benefits

Login