Smart-UPS 1400 RM XL Radius authentication

Anonymous user · ‎2021-06-28

Does anyone know how the Radius authentication works on this device? When I turn on Radius, I chose the option for "RADIUS, then local".

Then when logging in with RADIUS credentials it only let's you in as a read only user and you can also no longer logon with the local admin account.

Anonymous user · ‎2021-06-28

Thanx Winna! Knowing that it is failed connectivity and not failed "authentication" as the doc states makes all the difference. Stopped the IAS service for a minute and wha-la.

Forever Greatful,
Todd

Message was edited by: Fremont

See Answer In Context

voidstar_apc · ‎2021-06-28

See [this document|http://www.apcmedia.com/salestools/ASTE-6Z5QC8_R0_EN.pdf] detailing how to set up the RADIUS server. Unless you specify the service-type of a user, it defaults to read-only.

Anonymous user · ‎2021-06-28

But that does not explain why the local account no longer works:

RADIUS then Local: RADIUS is enabled, and local authentication is
enabled. Authentication is requested from the RADIUS server first;
local authentication is used only if RADIUS authentication fails.

This does not seem to be the case as the user and password I used to config radius is a local account and once I configured Radius the local credentials no longer work.

How can I get back to a point of being able to configure this?

BillP · ‎2021-06-28

the local account will only work if RADIUS fails. RADIUS failing is when the RADIUS server is unreachable. it is not considered a failure if the RADIUS server is reached and the username/password is incorrect.

if you have the same username set up for the RADIUS account as the local account, i think you will run into problems. if the username is not set up on the RADIUS account, it will not authenticate and not let you login because the RADIUS server responded.

the easiest way to fix this that i see is:

configure an acceptable username/password on the RADIUS server so the NMC can hit the RADIUS server and authenticate

or

disable the RADIUS server so that it is in accessible over the network, and it will fail because its unreachable, and then it will allow local access. this might not be a good idea because i imagine your RADIUS server is in production..

BillP · ‎2021-06-28

aww glad i could help 🙂

Anonymous user · ‎2021-06-28

Thanx Winna! Knowing that it is failed connectivity and not failed "authentication" as the doc states makes all the difference. Stopped the IAS service for a minute and wha-la.

Forever Greatful,
Todd

Message was edited by: Fremont