Topology:
PC: 172.17.10.1/24
Fa0/0: 172.17.10.10/24
Fa0/1: 192.168.10.10/24
Server: 192.168.10.1/24
RADIUS stands for Remote Authentication Dial-In User Service, it is a Client / Server Networking protocol that provides authentication, authorization and accounting. Radius server ensures that only the authorized users get access to the secured network environment.
This article provides basic understanding about configuring RADIUS on a Cisco Router and make sure the user defined on the RADIUS server can access the Router from PC0 via telnet.
Server Configuration:
Make sure to on the Service.
Client Name: Router
Client IP: 192.168.10.10
Server Type: Radius
Key: test123
Username: test1
Password: test
Router Configuration:
Router(config)#aaa new-model
#This will enable AAA
Router(config)#radius-server host 192.168.10.1 key test123
#Defines the Radius server IP and the key configured on the radius server.
Router(config)#aaa authentication login default group radius local
#If the Radius server fails to respond to the authentication request then the credentials configured in the local database will be used.
Router(config)#line vty 0 4
Router(config-line)#login authentication default
#This command allows devices to establish connection to the Router via telnet using the default authentication method defined. "0 - 4" means that the device can allow 5 simultaneous virtual connections.
Test the user session:
Open the command prompt on PC0 and initiate a telnet session to the Router0
Here the test1 user can Successfully initiate a telnet session with Router0.
.png)
0 Comments