Cisco PIX 500 Series Configuration Manual page 1087

Appendix E Configuring an External Server for Authorization and Authentication
Table E-6 Security Appliance Supported RADIUS Attributes and Values (continued)
Attribute Name
Required-Client-Firewall-Product-Code
Required-Client-Firewall-Description
Require-HW-Client-Auth
Required-Individual-User-Auth
Authenticated-User-Idle-Timeout
Cisco-IP-Phone-Bypass
IPSec-Split-Tunneling-Policy
IPSec-Required-Client-Firewall-Capability
IPSec-Client-Firewall-Filter-Name
OL-12172-03
VPN Attr.
3000 ASA PIX #
Y Y Y 46
Y Y Y 47
Y Y Y 48
Y Y Y 49
Y Y Y 50
Y Y Y 51
Y Y Y 55
Y Y Y 56
Y 57
Cisco Security Appliance Command Line Configuration Guide
Configuring an External RADIUS Server
Single
or
Syntax/ Multi-
Type Valued Description or Value
Integer Single Cisco Systems Products:
1 = Cisco Intrusion
Prevention Security Agent
or Cisco Integrated Client
(CIC)
Zone Labs Products:
1 = Zone Alarm
2 = Zone AlarmPro
3 = Zone Labs Integrity
NetworkICE Product:
1 = BlackIce
Defender/Agent
Sygate Products:
1 = Personal Firewall
2 = Personal Firewall Pro
3 = Security Agent
String Single String
Boolean Single 0 = Disabled
1 = Enabled
Integer Single 0 = Disabled
1 = Enabled
Integer Single 1-35791394 minutes
Integer Single 0 = Disabled
1 = Enabled
Integer Single 0 = No split tunneling
1 = Split tunneling
2 = Local LAN permitted
Integer Single 0 = None
1 = Policy defined by remote
FW Are-You-There (AYT)
2 = Policy pushed CPP
4 = Policy from server
String Single Specifies the name of the filter
to be pushed to the client as
firewall policy
E-37