Manualshelf

User guide

ManualsBrandsCisco ManualsComputer equipmentCX-FEIP-1TX= Installation and con?guration
141142143144145146147148149150
PTP 800 Series User Guide Security planning
phn-2513_004v000 (Oct 2012)
2-29
If the vendor-specific RADIUS attribute auth-role is present in a RADIUS response,
PTP 800 selects the role for the authenticated user according to auth-role. The supported
values of auth-role are as follows:
0: Invalid role. The user is not admitted.
1: Read Only
2: System Administrator
3: Security Officer
If the vendor-specific auth-role attribute is absent, but the standard service-type (Type 6)
attribute is present, PTP 800 selects the role for the authenticated user according to
service-type. The supported values of service-type are as follows:
Login(1): Read Only
Administrative(6): System Administrator
NAS Prompt(7): Read Only
If the auth-role and service-type attributes are absent, PTP 800 selects the Read Only role.
The auth-role vendor-specific attribute is defined in Table 11.
Table 11 Definition of auth-role vendor-specific attribute
Field Length Value Notes
Type 1 26 Vendor-specific attribute.
Length 1 12 Overall length of the attribute.
Vendor ID 4 17713 The same IANA code used for the SNMP enterprise
MIB.
Vendor Type 1 1 auth-role
Vendor
Length
1 4 Length of the attribute specific part.
Attribute-
Specific
4 0..3 Integer type (32-bit unsigned). Supported values:
invalid-role(0), readonly-role(1), system-admin-
role(2), security-officer-role(3).