Switch User Authentication using Identity Engines Ignition Server Technical Configuration Guide
In addition, on the ERS8600 only, via vendor identifier 1584 attribute type 194, if is set to a value of 0, you
can enter a list of CLI commands not allowed for a user. The CLI command is entered using the RADIUS
string value configured via RADIUS vendor identifier 1584 attribute type 195.
1.3 User Authentication using ERS5600, ERS5500,
ERS4500, or ERS2500
The ERS5600, ERS5500, ERS4500, and ERS2500 each support two different user access levels which
are read-only or read-write. RADIUS attribute type 6, Service-Type, is used to determine the access level.
The following displays the complete list of RADIUS attribute values for the RADIUS Service-Type attribute
where value 6 (Administrative) is used for read-write access and value 7 (NAS Prompt) is used for read-
only access
Sub-registry: Values for RADIUS Attribute 6, Service-Type
Reference: [RFC2865][RFC3575]
Registration Procedures: IETF Consensus
Registry:
Value Description Reference
----- ------------------------------- ---------
1 Login
2 Framed
3 Callback Login
4 Callback Framed
5 Outbound
6 Administrative
7 NAS Prompt
8 Authenticate Only
9 Callback NAS Prompt
10 Call Check
11 Callback Administrative
12 Voice [Chiba]
13 Fax [Chiba]
14 Modem Relay [Chiba]
15 IAPP-Register [IEEE 802.11f][Kerry]
16 IAPP-AP-Check [IEEE 802.11f][Kerry]
17 Authorize Only [RFC3576]
18 Framed-Management [RFC5607]
To Next Page
Loading...
