RADIUS authentication on Cisco switches: how to assign privilege levels?
6,093
Solution 1
Have a look here: How to Assign Privilege Levels with TACACS+ and RADIUS
Solution 2
send back the cisco-av-pair attribute with a value of "shell:priv-lvl=15".
Related videos on Youtube
14 : 16
Cisco AAA with RADIUS against Active Directory through the NPS role in Windows Server 2012 R2
15 : 37
Cisco Switch - Authenticate SSH on active directory via Radius
13 : 32
Configure Cisco Privilege Levels
14 : 26
How to Configure IEEE 802.1X Port Based Authentication
01 : 37
DevOps & SysAdmins: RADIUS authentication on Cisco switches: how to assign privilege levels?
Author by
Massimo
"Against stupidity, the Gods themselves fight in vain." https://www.linkedin.com/in/massimo-pascucci
Updated on September 17, 2022Comments
-
Massimo over 1 year
I need to configure some Cisco switches (IOS 12.x) to authenticate against a RADIUS server; the server is Windows Server 2003's IAS, and it validates users against his Active Directory domain.
I know how to configure the switches to validate usernames/passwords against the RADIUS server, and I can succesfully login using an AD account; the question is: how can I set privilege level 15 for users, in order to not have to use
enableeach time? -
Massimo about 14 yearsI found that soon after posting the question :-) But I'm still accepting your answer, as that page actually helped me a lot. The only difficult bit was setting "shell:priv-lvl=15" on IAS, but it can be done.