Cisco Cisco NAC Appliance 4.1.0
Cisco NAC Appliance - Clean Access Manager Installation and Administration Guide
OL-12214-01
Chapter 7 User Management: Configuring Auth Servers
Auth Test
Auth Test
The Auth Test tab is intended to allow you to test Kerberos, RADIUS, Windows NT, and LDAP
authentication providers you configured against actual user credentials, and will list the role assigned to
the user. Error messages are provided to assist in debugging authentication sources, particularly LDAP
and RADIUS servers.
authentication providers you configured against actual user credentials, and will list the role assigned to
the user. Error messages are provided to assist in debugging authentication sources, particularly LDAP
and RADIUS servers.
Tip
When creating or making changes to an existing authentication provider, create a new Auth Server entry
that points to the staging or development setup. You can then use Auth Test to test the setup prior to
production deployment.
that points to the staging or development setup. You can then use Auth Test to test the setup prior to
production deployment.
Note
You cannot use Auth Test to test SSO. A client machine is needed to test SSO.
To test authentication:
1.
From User Management > Auth Servers > Auth Test tab, select the provider against which you
want to test credentials in the Provider list. If the provider does not appear, make sure it is correctly
configured in the List of Servers tab.
want to test credentials in the Provider list. If the provider does not appear, make sure it is correctly
configured in the List of Servers tab.
2.
Type the username and password for the user and if needed a VLAN ID value.
3.
Click Authenticate. The test results appear at the bottom of the page.
Figure 7-26
Auth Test
Authentication Successful
For any provider type, the Result “Authentication successful” and Role of the user are displayed when
the auth test succeeds.
the auth test succeeds.
For LDAP/RADIUS servers, when authentication is successful and mapping rules are configured, the
attributes/values specified in the mapping rule are also displayed if the auth server (LDAP/RADIUS)
returns those values. For example:
attributes/values specified in the mapping rule are also displayed if the auth server (LDAP/RADIUS)
returns those values. For example:
Result: Authentication successful