Hey all.... I've got a weird situation here. This is a quick overview of my issue: We want to setup a 3640 with a PRI T1 controller (Controller T1 2/0) and Digital Modem card (lines 1 - 18) to accept both BRI and Async incoming calls coming in over the T1, have them authenticate to a RADIUS server (provided from Novell NDS tree via IP), and then do one of two things: If the caller is a user from outside (not part of the organization), we want to connect them in a terminal (telnet) session with a specific box (an IP address based on their login ID). If the caller is part of our organization, we want to give them an IP address and IPX network number and provide network connectivity to them. Is it possible to configure a single Dialer interface, then make the PRI (in my case S2/0:23) and all of the async lines all part of the same pool for that Dialer interface so that all incoming calls (regardless of whether BRI or async) are given the same parameters (like PPP encapsulation, CHAP authentication, etc)? Here's the problem (so far): I can't dial into the 3640 to test the box (for various reasons). SO, to test what's going on with the RADIUS, I use (on the 3640 and an AS5200): aaa authentication login default group radius local What I'm hoping to accomplish is to telnet into the router (with a test account that I've setup) and have the router redirect me to a server (based on that test user ID's RADIUS settings). I have setup (what I believe to be) all of the properties on the RADIUS side to tell the NAS (router) to start a telnet sessions with w.x.y.z upon login. I can do a debug radius then login to the router and watch what happens. The router sends all of the login information to the RADIUS server, and the server authenticates, and responds with all of the attributes that I configured on the account. However, instead of the router redirecting me to w.x.y.z, it just gives me a router prompt (as if I'd logged in with no radius anything). I'm confused...... are there any commands I need to issue to have the Cisco router act upon the attributes given to it by the RADIUS server upon login? I even tried to configure the RADIUS server with Vendor Specific Attributes for Cisco (trying to emulate TACACS+ commands) but couldn't figure it or, or wasn't doing it right or something.... But even then, when I logged into the router (with the test command) I could see the RADIUS server returning vendor specific attributes (26) and the router doing nothing to act on them..... ANY input is much appreciated. I've been banging my head on this for 2 days now......... TIA, Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12344&t=12344 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
