Filter
Top Products
5-12
Installing and Configuring Cisco Access Registrar, 4.2
OL-17221-02
Chapter 5 Customizing Your Configuration
Configuring a Remote Server for AA
To have Cisco AR perform authentication and authorization against information from the LDAP server,
you must change the DefaultAuthenticationService and DefaultAuthorizationService at the Radius
level.
Changing the Authentication and Authorization Defaults
Step 1 Run the aregcmd command:
aregcmd
Step 2 Use the cd command to change to the Radius level:
cd /Radius
Step 3 Use the set command to change the DefaultAuthentication:
set DefaultAuthentication remote-ldap
Step 4 Use the set command to change the DefaultAuthorization:
set DefaultAuthorization remote-ldap
Step 5 Use the save command to save your changes:
save
Step 6 Use the reload command to reload the server:
reload
Configuring Multiple Remote Servers
All of the sites described so far in this chapter have used a single server for authentication and
authorization; either the local RADIUS server or a remote LDAP server.
You can configure multiple remote servers to use the same Service, or multiple remote servers to use
different Services.
Figure 5-2 shows how to use multiple servers for authentication and authorization,
and how to employ a script to determine which one to use.