User Guide
OmniAccess SafeGuard OS Administration Guide
288
Chapter 6: Configuring Authentication and Role Derivation
Table 24 System Attributes
Attribute Description
system.authType Match rule based on authentication type used.
Supported operations for this attribute are: equals, not.
system.domainName Match rule based on value of domain name. Supported
operations for this attribute are: contains, equals, not.
system.mapType Match rule based on mapping type used. Supported
operations for this attribute are: equals, not.
system.portNum Match rule based on user slot/port. Supported operations
for this attribute are: equals, greater-than, less-than, not.
system.roleName The value of the role name, if it is already assigned. This
attribute allows you to chain rule maps together.
Supported operations for this attribute are: contains,
exists, equals, not.
system.srcIP Match rule based on source IP. Supported operations for
this attribute are: contains, equals, not.
system.srcMAC Match rule based on source MAC. Supported operations
for this attribute are: contains, equals, not.
system.timeOfDay Match rule based on current system time. Supported
operations for this attribute are: between, equals,
greater-than, less-than, not.
system.userName Match rule based on the value of the user name.
Supported operations for this attribute are: equals, not.
system.vlanID Match rule based on the value of the user VLAN ID.
Supported operations for this attribute are: equals,
greater-than, less-than, not.
system.matchValue This is a special attribute, available only when assigning a
role value. It it equal to the string form of the last
matched value. By using this attribute in the set
statement, you can assign multiple roles at one time. For
an example of this attribute, see Examples on page 290.
Table 25 DHCP Attributes
Attribute Description
dhcp.netmask Netmask option (1) as returned by the DHCP server.
dhcp.timeOffset Time offset option (2), which is the number of seconds
offset from GMT time in the given location.