Cisco PIX 500 Series Configuration Manual page 1056
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Configuring an External LDAP Server
Table E-2
Security Appliance Supported LDAP Cisco Schema Attributes
Attribute Name/
OID (Object Identifier)
Access-Hours
Allow-Network-Extension- Mode
Authenticated-User-Idle- Timeout
Authorization-Required
Authorization-Type
Auth-Service-Type
Cisco-AV-Pair
Cisco-IP-Phone-Bypass
Cisco-LEAP-Bypass
Client-Intercept-DHCP- Configure-Msg
Client-Type-Version-Limiting
Confidence-Interval
DHCP-Network-Scope
DN-Field
Firewall-ACL-In
Cisco Security Appliance Command Line Configuration Guide
E-6
Appendix E
Configuring an External Server for Authorization and Authentication
VPN
Attr.
1
3000 ASA PIX
OID
Y
Y
Y
1
Y
Y
Y
46
Y
Y
Y
36
Y
67
Y
68
Y
Y
Y
48
Y
Y
Y
37
Y
Y
Y
53
Y
Y
Y
44
Y
Y
Y
55
Y
Y
Y
52
Y
Y
Y
54
Y
Y
Y
69
Y
Y
93
Single
or
Syntax/
Multi-
Type
Valued
Possible Values
String
Single
Name of the time-range (for
example, Business-Hours)
Boolean Single
0 = Disabled
1 = Enabled
Integer
Single
1 - 35791394 minutes
Integer
Single
0 = No
1 = Yes
Integer
Single
0 = None
1 = RADIUS
2 = LDAP
String
Multi
An octet string in the following
format:
[Prefix] [Action] [Protocol]
[Source] [Source Wildcard
Mask] [Destination]
[Destination Wildcard Mask]
[Established] [Log] [Operator]
[Port]
For more information, see
"Cisco-AV-Pair Attribute
Syntax."
Integer
Single
0 = Disabled
1 = Enabled
Integer
Single
0 = Disabled
1 = Enabled
Boolean Single
0 = Disabled
1 = Enabled
String
Single
IPSec VPN client version
number string
Integer
Single
10 - 300 seconds
String
Single
IP address
String
Single
Possible values: UID, OU, O,
CN, L, SP, C, EA, T, N, GN,
SN, I, GENQ, DNQ, SER,
use-entire-name.
String
Single
Access list ID
OL-12172-03
Advertisement
Table of Contents
Troubleshooting
