Folks-
I have a requirement to have Cisco logins authenticate against a RADIUS server, as per this site:
http://aaronwalrath.wordpress.com/2010/ ... r2-nps-for
-radius-authentication-for-cisco-router-logins/
My server lady did that side of the house, and then I carried on with the Cisco side, as per directions from a friend:
<necessarily anonymized for security>
ip radius source-interface <an IP interface name here>
aaa new-model
aaa group server radius <name of the group the server lady made>
server <IP of the RADIUS server> auth-port <port #> acct-port <port #>
radius-server key <PSK the server lady made during server build>
aaa authentication login default group <same name as in line 3, above> local
I do a "test aaa group <groupname> <username> <password> new-code" from the switch and it returns "rejected username". The account I am using is precisely the one that was configured on the RADIUS server.
Ideas?