NimbostratusI've setup Radius for LTM 11.6. It seems to work great but I've having issue accessing the CLI using my radius account. Only account I can access via CLI is using root. I want to use something else that produces an audit trail instead of sharing the root account.
CirrusTo access CLI (bash or tmsh) you must enable it in the "Terminal Access" properties for your users.
Bash = "Advance shell".
The possible value you can set depends on the user role too.
Nimbostratustmsh is enabled, that's the first thing I checked. Is there a special syntax to use with radius when login into the CLI?
Nimbostratustmsh is enabled, that's the first thing I checked. Is there a special syntax to use with radius when login into the CLI?
Nimbostratusenabling tmsh/advanced shell should be all you need to do. what user-role did you grant the RADIUS-authenticated users?
Nimbostratusunder terminal access, there's:
disabled tmsh other
I'm selecting tmsh
Nimbostratus@shaggy, administrator
Nimbostratuscheck out the /var/log/secure log-file to see if a remote-auth action is being initiated when you try to login to CLI with your RADIUS credentials
NimbostratusThis is what i'm getting...
sshd(pam_audit): User=xxx tty=ssh host=146.36.209.52 failed to login after 1 attempts (start="Mon Jan 12 13:51:37 2015" end="Mon Jan 12 13:51:47 2015").:
AltostratusI hava the same problem. In v11.6 HF6, It is impossible to assign bash profile to a remote role group. Only tmsh is displayed even if 'remote access' is enabled. It looks like a bug from this version?
Nimbostratus