From: James.Jackson@broadwing.com
Date: Fri May 23 2003 - 12:35:20 GMT-3
Is your RADIUS server responding but omiting the Juniper VSA by chance ?
Juniper, along with some other vendors has a habit of setting Service-Type
to "Authenticate-Only" in the request packet...per RFC, if the RADIUS server
sees "Authenticate-Only" it is not required to return any authorization
data. One fix is to manipulate the request packet on input if ACS lets you
do that and change the Service-Type to "Login".
HTH
James
-----Original Message-----
From: Stefano Lassi [mailto:stefano.lassi@sysma.it]
Sent: Friday, May 23, 2003 4:46 AM
To: ccielab@groupstudy.com
Subject: OT-Radius authentication from a Juniper client to a Cisco
Secure ACS
Hi
I got troubles interfacing a Juniper router to a Cisco Secure ACS Radius
server.
Juniper staff seems sending correctelly authen packet to Cisco Radius,
Radius server reports correct authentication, but I can't see answer
ackwoledgment to Juniper that goes to retry, after 3 attempt I got time out
(of course!) on dialup PC.
Inside Cisco Secure "Network Configuration" I can choose between Radius IETF
or Radius Juniper, but with both confs Radius seems don't working.
Anybody has got experience with Cisco Radius and Juniper?
Ciao
Stefano Lassi
CCNP/CCDP
+++The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you received
this in error, please contact the sender and destroy any copies of this
document.+++
This archive was generated by hypermail 2.1.4 : Mon Jun 02 2003 - 15:13:47 GMT-3