The RADIUS security system is a distributed server or client for a secure network against unauthorized access. The are several steps to configure RADIUS authentication on the cisco router, so let get started.

Step 1: Use a computer laptop connect to the Cisco Router
Step 2: Configure hostname CCNA-R1
Step 3: Configure CCNA-R1 using the IP address of each interface (Fa0/0: 172.18.1.1 netmask: 255.255.255.0 Fa0/1: 172.18.2.1 netmask: 255.255.255.0) and no shutdown to enable both interfaces to active.
Router>
Router>en
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#
Router(config)#hostname CCNA-R1
CCNA-R1(config)#interface fastEthernet 0/0
CCNA-R1(config-if)#ip add
CCNA-R1(config-if)#ip address 172.18.1.1 255.255.255.0
CCNA-R1(config-if)#no sh
CCNA-R1(config-if)#no shutdown

CCNA-R1(config-if)#
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

CCNA-R1(config-if)#int fa0/1
CCNA-R1(config-if)#ip add 172.18.2.1 255.255.255.0
CCNA-R1(config-if)#no sh
CCNA-R1(config-if)#no shutdown

CCNA-R1(config-if)#
%LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up

CCNA-R1(config-if)#

Step 4: Configure Radius authentication for Telnet access on CCNA-R1

RADIUS Server host: 172.18.1.2
RADIUS Secret Key: P@ssw0rd

a. Configuration on CCNA-R1

We are using the command line, aaa new-model, to tell the router that you’re using either RADIUS for authentication.

CCNA-R1(config)#
CCNA-R1(config)#aaa new-model

b. Tells the router the IP address of the RADIUS server and the shared secret.

CCNA-R1(config)#radius-server 172.18.1.2 key p@ssword
CCNA-R1(config-if)#exit
CCNA-R1(config)#radius-server host 172.18.1.2 key P@ssw0rd
CCNA-R1(config)#

c. The aaa authentication command is used to start RADIUS authentication on the router as a default method for login.

CCNA-R1(config)#aaa new-model
CCNA-R1(config)#aaa authentication login default group radius local
CCNA-R1(config)#

g. Configuration of the virtual teletype interfaces for login

CCNA-R1(config)#line vty 0 4
CCNA-R1(config-line)#login authentication default
CCNA-R1(config-line)#
CCNA-R1(config-line)#do copy run start
Destination filename [startup-config]?
Building configuration…
[OK]
CCNA-R1(config-line)#

Step 5: Test connectivity to CCNA-R1 by ping 172.18.1.2 from the laptop

Packet Tracer PC Command Line 1.0
C:>ping 172.18.1.2

Pinging 172.18.1.2 with 32 bytes of data:

Request timed out.
Reply from 172.18.1.2: bytes=32 time=3ms TTL=127
Reply from 172.18.1.2: bytes=32 time<1ms TTL=127
Reply from 172.18.1.2: bytes=32 time=10ms TTL=127

Ping statistics for 172.18.1.2:
Packets: Sent = 4, Received = 3, Lost = 1 (25% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 10ms, Average = 4ms

C:>

Step 6: Test telnet connectivity to CCNA-R1 and authentication
Username: ccna
Password: cisco
C:>telnet 172.18.2.1
Trying 172.18.2.1 …Open

User Access Verification

Username: ccna

Password:
CCNA-R1>
CCNA-R1>

Read more articles

RADIUS Authentication on Cisco Router on YouTube

By Admin

6 thoughts on “RADIUS Configuration on Cisco Router”
  1. You could definitely see your enthusiasm within the article you write.
    The sector hopes for more passionate writers like you who are not afraid to mention how
    they believe. Always go after your heart.

  2. Hello, I believe your blog may be having web browser compatibility problems.
    When I look at your blog in Safari, it looks fine but when opening in Internet Explorer,
    it’s got some overlapping issues. I simply wanted to give you a quick heads up!
    Besides that, great site!

  3. hello!,I really like your writing so a lot! percentage we keep
    in touch more approximately your article on AOL?
    I require an expert in this house to solve my problem. May be
    that is you! Looking ahead to see you.

  4. Attractive section of content. I just stumbled upon your web site and in accession capital to assert that I acquire actually enjoyed account your blog posts.
    Anyway I will be subscribing to your augment and
    even I achievement you access consistently fast.

Comments are closed.