Authentication fallback is done by specifying multiple methods. If the
first one is unavailable, the next will be tried.
For the command "aaa authentication ppp use-radius local", "use-radius" is
the name of the method list, not a command to tell the router to use
RADIUS. Nothing on that line is telling the device to attempt to actually
authentication against the configured RADIUS server.
Regards,
Marvin Greenlee
----- Original Message -----
From: "" <kebramccie_at_gmail.com>
Sent: Wed, June 9, 2010 23:05
Subject:AAA and PPP
Hello,
I want to configure chap with aaa authentication.
My requirement says authentication should always fall back to local login
in the
event to connect to a radius server
My solution is as follows
R1
Aaa new-model
!
Aaa authentication ppp use-radius local
!
Radius server host x.x.x.x key xxxxx
!
Username cccc pass xxxxx
!
Int s0/0
**description serial conn to R2
Ppp authentication chap use-radius
!
On R2
Int s0/0
Decription conn to R1
Ppp chap hostname cccc
Ppp chap pass xxxxx
My question is will this fail back to local login if the radius server is not
available.
Sent from my BlackBerry wireless device from MTN
Blogs and organic groups at http://www.ccie.net
Received on Thu Jun 10 2010 - 07:25:08 ART
This archive was generated by hypermail 2.2.0 : Sun Aug 01 2010 - 09:11:37 ART