Patton electronic SmartNode 4110 Series ユーザーズマニュアル
Configuring the local database accounts
111
SmartWare Software Configuration Guide
8 • RADIUS Client Configuration
Attributes in the RADIUS accept message
After the user and his credentials are approved by the authentication procedure on the RADIUS server, the
SmartNode expects a RADIUS accept message with the following attributes:
After the user and his credentials are approved by the authentication procedure on the RADIUS server, the
SmartNode expects a RADIUS accept message with the following attributes:
Most of the attributes are standard RADIUS attributes and are supported by the RADIUS servers. You have to
specify a value for each of them as it is described in your RADIUS server’s user manual.
specify a value for each of them as it is described in your RADIUS server’s user manual.
The attribute Protocol (26) is vendor specific and defined by Patton. Servers not equipped to interpret the ven-
dor-specific information will ignore it. It is defined as follows:
dor-specific information will ignore it. It is defined as follows:
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Length | Vendor-Id
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Vendor-Id (cont) | Vendor-Type | Vendor-Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Vendor-String ...
+-+-+-+-+-+-+-+-+-+-+-+-
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Length | Vendor-Id
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Vendor-Id (cont) | Vendor-Type | Vendor-Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Vendor-String ...
+-+-+-+-+-+-+-+-+-+-+-+-
Type: 26
Length: Length of the whole attribute including the vendor data
Vendor-Id: 1768
Vendor-Type: 16
Vendor-Length: Length of all vendor data including Vendor-Type and Vendor-Length
Vendor-String: Not null terminated String with the value console or Telnet
Configuring the local database accounts
The final step in configuring the authentication and authorization service in SmartWare is to set up local user
accounts. The local database—which is queried with the AAA method local as described previously—can con-
tain administrator and operator accounts. For example, to grant access to the local SmartNode if all RADIUS
accounts. The local database—which is queried with the AAA method local as described previously—can con-
tain administrator and operator accounts. For example, to grant access to the local SmartNode if all RADIUS
Attribute
number
Attribute Type
Description
6
Service-Type
If the value is set to 'administrative', the user has administrator rights on
the SmartNode, otherwise operator rights
the SmartNode, otherwise operator rights
18
Reply-Message
Contains the text that is printed to the user after login. If the attribute is not
included in the message, no text will be printed
included in the message, no text will be printed
27
Session-Timeout
Number of seconds the user is allowed to logged on. If the attribute is
not included, the default value is infinite
not included, the default value is infinite
28
Idle-Timeout
Number of seconds to stay in idle state before automatic logout pro-
ceeds. If the attribute is not included, the default value is 30 minutes. The
command terminal idle-time-logout overwrites the value set by the
attribute
ceeds. If the attribute is not included, the default value is 30 minutes. The
command terminal idle-time-logout overwrites the value set by the
attribute