How to enable a aaa-server on ASA if it has failed?
How to verify the status of a aaa-server configure on ASA?
sh aaa-server
============================
Server Group: Test
Server Protocol: radius
Server Address: 10.60.2.6
Server port: 1645(authentication), 1646(accounting)
Server status: FAILED, Server disabled
==============================
Failed servers only reactivate after all of the servers in the group are inactive.
If the server is now available, test ping from ASA. Then we can enable it by following command:
aaa-server Test active host 10.60.2.6
If you want to disable a aaa-server, use following:
aaa-server Test fail host 10.60.2.6
  
http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/command/reference/cmd_ref/a1.html#wp1558160
 
sh aaa-server
============================
Server Group: Test
Server Protocol: radius
Server Address: 10.60.2.6
Server port: 1645(authentication), 1646(accounting)
Server status: FAILED, Server disabled
==============================
Failed servers only reactivate after all of the servers in the group are inactive.
If the server is now available, test ping from ASA. Then we can enable it by following command:
aaa-server Test active host 10.60.2.6
If you want to disable a aaa-server, use following:
aaa-server Test fail host 10.60.2.6
http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/command/reference/cmd_ref/a1.html#wp1558160
 
 
0 comments:
Post a Comment