Table of Contents
Advertisement
Chapter 7 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Customizing CN3000 and customer settings - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Chapter 7
• CHAP-Password (string): The password assigned to the CN3000 on the Security >
• CHAP-Challenge (string): Randomly generated by the product. As defined in RFC
• MSCHAP-Challenge (string): As defined in RFC 2433. Only present when the
• MSCHAP-Response (string): As defined in RFC 2433. Only present when the
• MSCHAPv2-Response (string): As defined in RFC 2759. Only present when the
• EAP-Message (string): As defined in RFC 2869. Only present when the
Access accept
These values will override the settings for their corresponding ColubrisAV Pair attributes
("Colubris-AVPair attribute" on page 152).
• Acct-Interim-Interval (32-bit unsigned integer): When present, it enables the
• Session-Timeout (32-bit unsigned integer): Maximum time a session can be active.
• Idle-Timeout (32-bit unsigned integer): Maximum idle time in seconds allowed for the
• Class (string): As defined in RFC 2865. Multiple instances are supported.
• EAP-Message (string): Only supported when authentication is 802.1x or EAP-MD5.
• MS-MPPE-Recv-Key: As defined by RFC 3078.
• MS-MPPE-Send-Key: As defined by RFC 3078.
• Termination-Action: As defined by RFC 2865. If set to 1, a new Access Request is
• Colubris-AVPair: See page
802.1x only
• Tunnel-type: Only used when assigning a specific VLAN number to a customer. In
• Tunnel-medium-type = Only used when assigning a specific VLAN number to a
• Tunnel-private-group-id = Only used when assigning a specific VLAN number to a
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 165 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Authentication page. Encoded as defined in RFC 2865. Only present when the
authentication method for the RADIUS profile is set to CHAP.
2865. Only present when the authentication method for the RADIUS profile is set to
CHAP. Length = 19 bytes.
authentication method for the RADIUS profile is set to MSCHAPv1 or MSCHAPv2.
Length = 8 bytes.
authentication method for the RADIUS profile is set to MSCHAPv1. Length = 49
bytes.
authentication method for the RADIUS profile is set to MSCHAPv2. Length = 49
bytes.
authentication method for the RADIUS profile is set to EAP-MD5.
transmission of RADIUS accounting requests of the Interim Update type. Specify the
number of seconds between each transmission.
The CN3000 re-authenticates itself when this timer expires. Omitting this attribute or
specifying 0 will disable the feature. (Note that the authentication interval is also
configurable on the Security > Authentication page.
customer. Once reached, the customer session is terminated with termination-cause
IDLE-TIMEOUT. Omitting the attribute or specifying 0 disables the feature.
Note that the content will not be read as the RADIUS Access Accept is overriding
whatever indication contained inside this packet.
sent. If an Access Accept is returned, the CN3000 then extends the customer's
session timeout, and if applicable, session quotas according the value returned by the
RADIUS server.
this case it must be set to "VLAN".
customer. In this case it must be set to "802".
customer. In this case it must be set to the VLAN number.
167
for details.
- Quick Links:
- Introduction
- Wireless Radio
- Logging in
- Reset Button
Hide quick links:
Advertisement
Table of Contents
