E-7
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Appendix E Configuring an External Server for Authorization and Authentication
Configuring an External LDAP Server
cVPN3000-PPTP-Encryption Y 14 Integer Single Bitmap:
1 = Encryption required
2 = 40 bits
4 = 128 bits
8 = Stateless-Required
Example: 15 =
40/128-Encr/Stateless-Req
cVPN3000-L2TP-Encryption Y 15 Integer Single Bitmap:
1 = Encryption required
2 = 40 bit
4 = 128 bits
8 = Stateless-Req
15 =
40/128-Encr/Stateless-Req
cVPN3000-IPSec-Split-Tunnel-List YYY16StringSingleSpecifies the name of the
network or access list that
describes the split tunnel
inclusion list.
cVPN3000-IPSec-Default-Domain YYY17StringSingleSpecifies the single default
domain name to send to the
client (1-255 characters).
cVPN3000-IPSec-Split-DNS-Name YYY18StringSingleSpecifies the list of secondary
domain names to send to the
client (1-255 characters).
cVPN3000-IPSec-Tunnel-Type YYY19IntegerSingle1 = LAN-to-LAN
2 = Remote access
cVPN3000-IPSec-Mode-Config YYY20BooleanSingle0 = Disabled
1 = Enabled
cVPN3000-IPSec-User-Group-Lock Y 21 Boolean Single 0 = Disabled
1 = Enabled
cVPN3000-IPSec-Over-UDP YYY22BooleanSingle0 = Disabled
1 = Enabled
cVPN3000-IPSec-Over-UDP-Port YYY23IntegerSingle4001 - 49151, default = 10000
cVPN3000-IPSec-Banner2 YYY24StringSingleBanner string
cVPN3000-PPTP-MPPC-Compression Y 25 Integer Single 0 = Disabled
1 = Enabled
Table E-2 Security Appliance Supported LDAP Cisco Schema Attributes (continued)
Attribute Name/
OID (Object Identifier)
VPN
3000 ASA PIX
Attr.
OID
1
Syntax/
Type
Single
or
Multi-
Valued Possible Values
To Next Page
Loading...
