Cisco − Configuring PPP Callback with RADIUS pdf下载

下载 admin 2195℃

5

Configuring PPP Callback with RADIUS

Introduction
Before You Begin
Conventions
Prerequisites
Components Used
Configure
Network Diagram
Server Setup − CiscoSecure NT
Server Setup − CiscoSecure UNIX
Server Setup − Livingston RADIUS (with Cisco av−pairs)
Configurations
Verify
Troubleshoot
Troubleshooting Commands
Sample Debug Output
PPP Callback with User−Specified Number
Server Configurations
Server Setup − CiscoSecure NT
Server Setup − CiscoSecure UNIX
Server Setup − Livingston RADIUS
Sample Debug Output
Related Information

Introduction
This document shows examples of configuring the router and server to do Point−to−Point Protocol (PPP)
callback with RADIUS.
Before You Begin
Conventions
For more information on document conventions, see the Cisco Technical Tips Conventions.
Prerequisites
To make this work:
Do initial testing with local authentication and callback (that is, remove the aaa new−model
command). If callback does not work with local authentication, it will not work with RADIUS. See
this example of using local authentication.

Do further PPP authentication testing with RADIUS without callback. If users FAIL authentication
and/or authorization without callback, authentication and authorization will not work with callback.

Once local authentication for callback and PPP authentication with RADIUS work, add the
information from the local user on the router (such as callback dial−string) to the user’s profile on the
server.

Note: The client in these tests was an NT 4.0 server, DUN, set up as usual for a PPP connection, but with
Enable PPP/LCP extensions checked under Server to allow Microsoft callback. Microsoft callback is
supported in Cisco IOS® Software Releases 11.3.2.T and later.
Components Used
This configuration was developed and tested using the software versions below.
Cisco IOS Software Release 11.3.2.T and later

CiscoSecure ACS UNIX 2.x or CiscoSecure ACS NT 2.x

Configure
In this section, you are presented with the information to configure the features described in this document.
Note: To find additional information on the commands used in this document, use the Command Lookup
Tool ( registered customers only) .
Network Diagram
This document uses the network setup shown in the diagram below.

Configuring PPP Callback with RADIUS

Server Setup − CiscoSecure NT
User gets password and confirm password.

In Group Settings: attribute 006 Service−Type = Framed attribute 007 Framed−Protocol = PPP

In the last box on the screen, Cisco RADIUS Attributes, check [009\001 − AV−Pair] and underneath,
enter: lcp:callback−dialstring=20367

Server Setup − CiscoSecure UNIX

rtp−berry# ./ViewProfile −p 9900 −u callback
User Profile Information
user = callback{
profile_id = 34 
profile_cycle = 1 
radius=Cisco {
check_items= {
2="callback"
} 
reply_attributes= {
6=2
7=1
9,1="lcp:callback−dialstring=20367"
} 
}

下载地址:

链接:http://pan.baidu.com/s/1jIoNUV8 密码:9uzz

转载请注明:56CTO » Cisco − Configuring PPP Callback with RADIUS pdf下载

喜欢 (1)or分享 (0)

56CTO-为网络技术精英提供专业资料

联系我们