Great Circle Associates Firewalls
(June 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Question about PIX and command AAA
From: Luis Alberto Barraza del Castillo <lbarraza @ infosel . com . mx>
Date: Fri, 27 Jun 1997 16:20:34 -0500
To: firewalls @ greatcircle . com 
Hi, I trying to use the AAA command for authenticate users in PIX box, I
use the next configuration:
# radius-server host 10.1.1.3 keykey
# aaa authentication any outbound 10.1.1.2 255.255.255.255 radius 
# aaa authorization any outbound 10.1.1.2 255255.255.255
I use a RadiusNT by emerald, my client in radius server is the inbound
ip address in the pix 10.1.1.1 and have an account for test. When the
machine 10.1.1.2 tray go out  of the FW, the radius server ask me a user
and password , I give the right user and password and all the times
reject my petition. I debug the radius server and every thing is right,
check the user and make a match, check the password and al or ok, but
the pix send an unauthorization message.
Some body has comments about this, thanks for your help.
Best regards
Luis Alberto Barraza del C.   Infosel S.A. de C.V.
Network Security                 Dirección de Redes y Telecomunicaciones
lbarraza @
 Infosel .
 com .
 mx   http://www.infosel.com.mx
voz 52(8)318-8751                Clz. San Pedro #507Nte, Col. Fuentes
del Valle
fax 52(8)318-8995               Monterrey NL, Mexico CP 66220
            "El enseñar nos hace aprender"
Indexed By Date Previous: Re: talking in SMTP
From: Brian Mitchell <brian @ firehouse . net>
Next: Stronger authentication for inbound HTTP
From: Steve Gaarder <gaarder @ actech . com>
Indexed By Thread Previous: Value added to Gauntlet by V-One?
From: jcarson @ mail . ameritel . net (Smartronix)
Next: Automatic reply
From: jim @ army . mod . uk
Google
 
Search Internet Search www.greatcircle.com