OK got it. Thanks for taking a look at this. Regards.
Original Message:
Sent: May 14, 2024 05:05 PM
From: chulcher
Subject: Cannot delete RADIUS server
OK, that flag indicates that the configuration is applied at THAT level, and both configuration nodes are showing the same flag. That causes problems, as you've found. Best guess, someone at some point prior to upgrading to AOS 8.4 went in via local config mode and set that configuration. TAC might be able to assist you with getting that cleared up, but without them I'd say your choices are either 1) create a new server group with the proper servers and use that group in every location where the other was used previously, then ignore that server group going forward or 2) start over from scratch with a "write erase" and then build the configuration back without the error.
------------------------------
Carson Hulcher, ACEX#110
Original Message:
Sent: May 14, 2024 04:57 PM
From: Vacation
Subject: Cannot delete RADIUS server
The above post #5 was the cli at the mm/mynode level. At the /mm level the result is the same:
auth-server XXXXXX ::: flags: C
Original Message:
Sent: May 14, 2024 03:17 PM
From: chulcher
Subject: Cannot delete RADIUS server
Are you at /mm or at /mm/mynode?
------------------------------
Carson Hulcher, ACEX#110
Original Message:
Sent: May 14, 2024 02:36 PM
From: Vacation
Subject: Cannot delete RADIUS server
Have been looking at both the level of the Controller and the level of the device.
At the Controller level, the error message is different: RADIUS Server "XXXXXX" is in use
Looking at AAA Profile: default-iap-aaa-profile and within: MAC Authentication Server Group I find the "default" server group. But attempt to change that choice from default to, say internal, results in error Error: parameter is not allowed to change
Original Message:
Sent: May 14, 2024 12:45 PM
From: chulcher
Subject: Cannot delete RADIUS server
What level in the configuration hierarchy are you at when looking at this?
------------------------------
Carson Hulcher, ACEX#110
Original Message:
Sent: May 14, 2024 12:26 PM
From: Vacation
Subject: Cannot delete RADIUS server
Here is the default server group
aaa server-group default ::: ref: pr, flags: CI
Here is the server in question
auth-server xxxxxx ::: flags: C
Am using the WebUI to modify the server or group membership. The server itself no longer exists. Unit was installed in 2018 and shipped with 6.5.4.8
Original Message:
Sent: May 14, 2024 12:08 PM
From: chulcher
Subject: Cannot delete RADIUS server
Are you trying to make the edit at /mm or /mm/mynode?
The only other thing I can figure is that something was modified in local config mode when that was still an option.
Run show configuration datastore detail to see the RADIUS group in question, the flags will give some indication as to where in the configuration hierarchy the command is set.
------------------------------
Carson Hulcher, ACEX#110
Original Message:
Sent: May 14, 2024 11:53 AM
From: Vacation
Subject: Cannot delete RADIUS server
Unusual that the old image in partition 1 can't be retrieved to archive, but regardless have now upgraded to 8.10. Still the problem persists: cannot delete RADIUS server.
Operations on RADIUS Server "xxxxx" will not take effect: configuration is inherited.
A member of the default group which is not referenced anywhere in the 438 configurable variables. Anyone suggestions?
Standalone controller
Original Message:
Sent: May 08, 2024 04:27 PM
From: chulcher
Subject: Cannot delete RADIUS server
8.5 is ancient at this point and not supported. You'll need to upgrade to 8.10 at the minimum for any kind of support.
Is this controller setup as a standalone or managed by a Mobility Conductor?
------------------------------
Carson Hulcher, ACEX#110
Original Message:
Sent: May 08, 2024 01:52 PM
From: Vacation
Subject: Cannot delete RADIUS server
Controller 7010 Package 8.5.0.0-FIPS
Cannot delete RADIUS server. Is member of default Auth Servers group. ERROR MSG "Operations on RADIUS Server "XXXXX" will not take effect: configuration is inhereted."
Cannot find any association with this server group.
Thanks