Table 14
Syntax for VSA-based account roles (continued)
Item
Vendor length
Attribute-specific data
Windows 2000 IAS
For example, to configure a Windows 2000 IAS server to use VSA to pass the "Admin" role to the switch in
the dial-in profile, the configuration specifies the Vendor code (1588), Vendor-assigned attribute number
(1), and attribute value (admin), as shown in the following:
Linux FreeRadius server
For the configuration on a Linux FreeRadius server, define the following in a vendor dictionary file called
dictionary.brocade. See
Table 15
Dictionary.brocade file entries
Include
VENDOR
ATTRIBUTE
After you have completed the dictionary file, define the role for the user in a configuration file. For example
to grant the user jsmith the Admin role, you would add into the configuration file:
jsmithAuth-Type:= Local, User-Password == "jspassword"
Brocade-Auth-Role = "admin"
Value
Description
2 or higher
1 octet, calculated by server, including vendor-type and
vendor-length
ASCII string
multiple octet, maximum 253, indicating the name of assigned
role and other supported attribute values such as Admin
Domain member list.
Table
15.
Key
Brocade
Brocade-Auth-Role
AdminDomain
Value
1588
1 string Brocade
Fabric OS 5.3.0 administrator guide
75