Cisco FirePOWER ASA 5500 series Configuration Manual page 939
Security appliance command line
Hide thumbs
Also See for FirePOWER ASA 5500 series:
- Datasheet (20 pages) ,
- Configuration manual (1140 pages)
Table of Contents
Advertisement
Appendix E
Configuring an External Server for Authorization and Authentication
Table E-4
Security Appliance Supported RADIUS Attributes and Values (continued)
Attribute Name
IPSec-Required-Client-Firewall-Capability
IPSec-Client-Firewall-Filter-Name
IPSec-Client-Firewall-Filter-Optional
IPSec-Backup-Servers
IPSec-Backup-Server-List
DHCP-Network-Scope
Intercept-DHCP-Configure-Msg
MS-Client-Subnet-Mask
Allow-Network-Extension-Mode
Authorization-Type
Authorization-Required
Authorization-DN-Field
IKE-KeepAlive-Confidence-Interval
OL-10088-01
VPN
Attr.
3000 ASA PIX
#
Y
Y
Y
56
Y
57
Y
Y
Y
58
Y
Y
Y
59
Y
Y
Y
60
Y
Y
Y
61
Y
Y
Y
62
Y
Y
Y
63
Y
Y
Y
64
Y
Y
Y
65
Y
66
Y
Y
Y
67
Y
Y
Y
68
Cisco Security Appliance Command Line Configuration Guide
Configuring an External RADIUS Server
Single
or
Syntax/
Multi-
Single or Multi-
Type
Valued
Valued
Single
Integer
0 = None
1 = Policy defined by remote
FW Are-You-
There (AYT)
2 = Policy pushed CPP
4 = Policy from server
Single
String
Specifies the name of the filter
to be pushed to the client as
firewall policy
Single
Integer
0 = Required
1 = Optional
Single
String
1 = Use Client-Configured list
2 = Disable and clear client list
3 = Use Backup Server list
Single
String
Server Addresses (space
delimited)
Single
String
IP Address
Single
Boolean
0 = Disabled
1 = Enabled
Single
Boolean
An IP address
Single
Boolean
0 = Disabled
1 = Enabled
Single
Integer
0 = None
1 = RADIUS
2 = LDAP
Single
Integer
0 = No
1 = Yes
Single
String
Possible values: UID, OU, O,
CN, L, SP, C, EA, T, N, GN,
SN, I, GENQ, DNQ, SER,
use-entire-name
Single
Integer
10-300 seconds
E-29
Advertisement
Table of Contents
Troubleshooting
