No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

The Customer Fails to Log in to the Firewall Web by Using the Local Account Due to a Configuration Error

Publication Date:  2012-07-23 Views:  56 Downloads:  0
Issue Description
A customer fails to log in to the firewall Web by using the local account, but succeeds by using the RADIUS account.
Alarm Information
None.
Handling Process
The customer uses the RAIDIUS authentication, so the authentication and authorization mode must be configured. The check on the configuration indicates that the authentication mode is set to local but the authorization mode is not configured. Add local to the authorization information.
 
Original configuration:
authentication-scheme cams
  authentication-mode  local  radius
authorization-scheme cams
  authorization-mode  if-authenticated
Modified configuration:
authentication-scheme cams
  authentication-mode  local  radius
authorization-scheme cams
  authorization-mode   local if-authenticated
This is not easy to understand, because if-authenticated literally indicates that both the local account and the RAIDIUS account should be authorized once they are authenticated. However, actually, local must be added.
Root Cause
  1. The local account is configured incorrectly.
  2. The authorization and authentication configuration is incorrect.
  3. In this case, the problem originates from the second cause.
Suggestions
None.

END