Cisco Cisco Transport Manager 9.1 Referências técnicas
14
Cisco Transport Manager Release 9.1 Basic External Authentication
OL-19366-01
Table of RADIUS Attributes
–
MUST, MUST NOT, SHOULD, MAY, and so on—Requirement types as specified in RFC 2119.
These words indicate that a requirement statement is present in the RFC. Note that the “MAY”
requirements are optional requirements.
These words indicate that a requirement statement is present in the RFC. Note that the “MAY”
requirements are optional requirements.
–
Unspecified—The attribute has no associated requirement statement. The RFC contains only a
description of the attribute.
description of the attribute.
•
Supported—Indicates CTM support for the attribute:
–
Yes—Supported
–
No—Not supported
–
N/A—Not applicable
–
Partial—Partially supported
Table 4
RADIUS Attributes
Request Accept Reject Challenge No.
Attribute
Details
RFC
RFC Req.
Type
Type
Sup-
ported?
ported?
0-1
0-1
0
0
1
User-Name
The value is the username
of the authenticating CTM
user.
of the authenticating CTM
user.
2865
MUST
Yes
0-1
0
0
0
2
User-Password
—
2865
MUST
Yes
0-1
0
0
0
3
CHAP-Password
Does not include the PPP
protocol to connect users
with the RADIUS client.
protocol to connect users
with the RADIUS client.
2865
MUST
N/A
0-1
0
0
0
4
NAS-IP-Address
The value is the IP version 4
address of the host where
the CTM server is running.
address of the host where
the CTM server is running.
2865
MUST
Yes
0-1
0
0
0
5
NAS-Port
The value is the CTM server
process ID, which changes
every time the CTM server
is restarted.
process ID, which changes
every time the CTM server
is restarted.
2865
MAY
Yes
0-1
0-1
0
0
6
Service-Type
The value is 8 (authenticate
only). This attribute is
present in the first
Access-Request message,
but is missing from the
RADIUS server’s
Access-Challenge replies.
For this reason, the
RADIUS server
administrator must not
configure the RADIUS
server to check for the
existence of this attribute in
every Access-Request
message. RSA
Authentication Manager 7.1
uses Challenge/Response.
only). This attribute is
present in the first
Access-Request message,
but is missing from the
RADIUS server’s
Access-Challenge replies.
For this reason, the
RADIUS server
administrator must not
configure the RADIUS
server to check for the
existence of this attribute in
every Access-Request
message. RSA
Authentication Manager 7.1
uses Challenge/Response.
2865
MAY
Partial
0-1
0-1
0
0
7
Framed-Protocol
—
2865
MAY
N/A