From: Peter Svidler (doubleccie@yahoo.com)
Date: Thu Jun 07 2007 - 10:09:16 ART
Folks ;
I am trying the downloadable ACL using Radius for traffic passing through a PIX
as i understand this , there are 3 ways to achieve this , first one (which im trying here ) is create the acl on the PIX and retrieve the name of the ACL via Radius IETF field-ID 11 as explained in the documentation .
now before i put anything on that field , everything works fine , the traffic gets authenticated and pass through the pix
once i put this option (acl=eng ) where eng is the name of the ACL created on the pix , i get an authorization error when i try to authenticate (sound logical and fair )
but when i try to allow authorization via the RADIUS using the command
aaa authorization match ACL1 inside RAD
Authorization is not supported in RADIUS
what am i missing here ? do i need to Radius authorization to allow the downloadable ACL ? but Radius authorization is not supported
any help is appreciated
---------------------------------
Fussy? Opinionated? Impossible to please? Perfect. Join Yahoo!'s user panel and lay it on us.
This archive was generated by hypermail 2.1.4 : Sun Jul 01 2007 - 17:24:47 ART