Unsolved
1 Rookie
•
4 Posts
0
1251
May 8th, 2020 11:00
Radius authentication fails on Dell Powerconnect 6248
I am trying to login to TELNET with Dell switches using Freeradius 3 but it fails each time.
Here are the config details:
Image Descriptions
image1 : default image
image2 :
Images currently available on Flash
--------------------------------------------------------------------
unit image1 image2 current-active next-active
--------------------------------------------------------------------
1 2.2.0.3 3.3.18.1 image2 image2
2 3.3.18.1 2.2.0.3 image1 image1
************************
#show authentication methods
Login Authentication Method Lists
---------------------------------
defaultList : none
networkList : local
Radius : radius local
Enable Authentication Method Lists
----------------------------------
enableList : none
RadiusEnable : radius enable
Line Login Method List Enable Method List
------- ----------------- ------------------
Console defaultList enableList
Telnet Radius RadiusEnable
SSH networkList enableList
HTTPS :radius local
HTTP :local
DOT1X :
show radius-servers
IP address Type Port TimeOut Retran. DeadTime Source IP Prio. Usage
---------------- ----- ----- ------- ------- -------- ------------- ----- ------
10.14.1.196 Auth 1812 15 3 0 10.14.1.252 0 all
10.14.1.196 Acct 1813 N/A N/A N/A N/A N/A N/A
Global values
--------------------------------------------
Number of Configured Authentication Servers.... 1
Number of Configured Accounting Servers........ 1
Number of Named Authentication Server Groups... 1
Number of Named Accounting Server Groups....... 1
Number of Retransmits.......................... 3
Timeout Duration............................... 15
Deadtime....................................... 0
Source IP...................................... 10.14.1.252
RADIUS Accounting Mode......................... Enable
RADIUS Attribute 4 Mode........................ Disable ------ i have tried enabling this
RADIUS Attribute 4 Value....................... 0.0.0.0 ----- 10.14.1.196
aaa authentication login "Radius" radius local
aaa authentication enable "RadiusEnable" radius enable
ip https authentication radius local
aaa authorization network default radius
aaa accounting network default start-stop group radius
radius-server source-ip 10.14.1.252
radius-server key "radiuskey"
radius-server host auth 10.14.1.196
no msgauth
primary
name "pfsense-radius"
exit
radius-server host acct 10.14.1.196
name "pfsense-radius"
exit
line telnet
login authentication Radius
enable authentication RadiusEnable
password 123456789 encrypted
exit
ip ssh server
management access-list "testprofile"
permit ip-source 10.14.1.196 mask 255.255.255.0 service telnet priority 1
exit
0 events found
DELL-Josh Cr
Moderator
•
9.5K Posts
0
May 8th, 2020 16:00
Hi,
Is telnet enabled? Can you try with SSH?
Naft
1 Rookie
•
4 Posts
0
May 11th, 2020 07:00
Hi,
Telnet is enabled and i can login using local credentials. Did not try with ssh since that is my main connection to the switch. i will try with ssh and get back to you. However, is there anything related to service type or VSAs that i should be looking into? Because, I'm using Freeradius 3 and i checked the dictionary files on radius and could not find a file for Dell powerconnect.
Thanks,
DELL-Josh Cr
Moderator
•
9.5K Posts
0
May 11th, 2020 09:00
Is freeradius set for EAP?
Naft
1 Rookie
•
4 Posts
0
May 12th, 2020 07:00
Yes Sir, I am using the Freeradius certificates.
Naft
1 Rookie
•
4 Posts
0
May 12th, 2020 09:00
Yes, they are on the same subnet. ping is working fine.
DELL-Josh Cr
Moderator
•
9.5K Posts
0
May 12th, 2020 09:00
Hi,
Are there VLANs configured? Is the freeradius server on the same subnet?