Specifications
Managing Access Server Security
23-16
Setting User Permissions
Permissions are explicitly given by the authorizations that were in the user-name
entry in the RADIUS server’s authentication entry. When any attributes that may
be appropriate are missing, an attempt is made to find a specified value in the
realm defaults. When these are still missing, the port configuration can supply its
specified values (for attributes having a corresponding representation in the port).
Permissions are from a DIGITAL vendor-specific RADIUS attribute. The
following is a list of RADUIS permissions:
DIALOUT NODIALOUT
LAT NOLAT
TELNET NOTELNET
SLIP NOSLIP
PPP NOPPP
PRIVILEGED NOPRIVILEGED (level of access server command privilege)
For each of the these attributes, the default is NOxxx or DISABLED.
Additional RADIUS Attributes
The tables in this section contain lists of additional RADIUS attributes that the
access server supports.
NAS-Prompt Access server’s command or menu prompt.
Callback-NAS-Prompt Callback first, then NAS prompt.
Value Description