Managing Authentication Servers LDAP Servers
OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 31-23
LDAP Accounting Attributes
Logging and accounting features include Account Start, Stop and Fail Times, and Dynamic Log.
Typically, the Login and Logout logs can be accessed from the directory server software. Additional third-
party software is required to retrieve and reset the log information to the directory servers for billing
purposes.
The following sections describe accounting server attributes.
AccountStartTime
User account start times are tracked in the AccountStartTime attribute of the directory entry of the user
that keeps the time stamp and accounting information of user log-ins. The following fields (separated by
carriage returns “|”) are contained in the Login log. Some fields are only used for Layer 2 Authentication.
Fields Included For Any Type of Authentication
• User account ID or username client entered to log-in: variable length digits.
• Time Stamp (YYYYMMDDHHMMSS (YYYY:year, MM:month, DD:day, HH:hour, MM:minute,
SS:second)
• Switch serial number: Alcatel-Lucent.BOP.<switch name>.<MAC address>
• Client IP address: variable length digits.
Fields Included for Layer 2 Authentication Only
• Client MAC address: xx:xx:xx:xx:xx:xx:xx (alphanumeric).
• Switch VLAN number client joins in multiple authority mode (0=single authority; 2=multiple
authority); variable-length digits.
• Switch slot number to which client connects: nn
• Switch port number to which client connects: nn
• Switch virtual interface to which client connects: nn
AccountStopTime
User account stop times are tracked in the AccountStopTime attribute that keeps the time stamp and
accounting information of successful user log-outs. The same fields as above (separated by carriage
returns “|”) are contained in the Logout log. A different carriage return such as the # sign can be used in
some situations. Additionally, these fields are included but apply only to the Logout log:
Fields For Any Type of Authentication
• Log-out reason code, for example LOGOFF(18) or DISCONNECTED BY ADMIN(19)
• User account ID or username client entered to log-in: variable length digits.
Fields For Layer 2 Authentication Only
• Number of bytes received on the port during the client session from log-in to log-out: variable length
digits.
• Number of bytes sent on the port during the client session from log-in to log-out: variable length digits.
To Next Page
Loading...
