Returning User Group Information Via Radius; Radius Communication Exchange Specifications - Raritan Dominion KX II User Manual
Hide thumbs
Also See for Dominion KX II:
- User manual (408 pages) ,
- Quick setup manual (9 pages) ,
- Quick installation and setup manual (5 pages)
Table of Contents
Advertisement
Returning User Group Information via RADIUS
When a RADIUS authentication attempt succeeds, the KX II determines
the permissions for a given user based on the permissions of the user's
group.
Your remote RADIUS server can provide these user group names by
returning an attribute, implemented as a RADIUS FILTER-ID. The
FILTER-ID should be formatted as follows: Raritan:G{GROUP_NAME}
where GROUP_NAME is a string denoting the name of the group to
which the user belongs.
Raritan:G{GROUP_NAME}:D{Dial Back Number}
where GROUP_NAME is a string denoting the name of the group to
which the user belongs and Dial Back Number is the number associated
with the user account that the KX II modem will use to dial back to the
user account.
RADIUS Communication Exchange Specifications
The KX II sends the following RADIUS attributes to your RADIUS server:
Attribute
Log in
Access-Request (1)
NAS-Port-Type (61)
NAS-IP-Address (4)
User-Name (1)
Acct-Session-ID (44)
User-Password(2)
Accounting-Request(4)
Acct-Status (40)
NAS-Port-Type (61)
NAS-Port (5)
NAS-IP-Address (4)
User-Name (1)
Acct-Session-ID (44)
Log out
Accounting-Request(4)
Data
VIRTUAL (5) for network connections.
The IP address for the KX II.
The user name entered at the login screen.
Session ID for accounting.
The encrypted password.
Start(1) - Starts the accounting.
VIRTUAL (5) for network connections.
Always 0.
The IP address for the KX II.
The user name entered at the login screen.
Session ID for accounting.
Chapter 7: User Management
141
Advertisement
Table of Contents
