E-11
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Appendix E Configuring an External Server for Authorization and Authentication
Configuring an External LDAP Server
cVPN3000-Client-Type-Version-Limiting YYY55StringSingleIPsec VPN client version
number string
cVPN3000-WebVPN-Content-Filter-
Parameters
Y Y 56 Integer Single 1 = Java & ActiveX
2 = Java scripts
4 = Images
8 = Cookies in images
Add the values to filter multiple
parameters. For example: enter
10 to filter both Java scripts and
cookies. (10 = 2 + 8)
cVPN3000-WebVPN-Enable-functions 57 Integer Single Not used - deprecated
cVPN3000-WebVPN-Exchange-Server-
Address
58 String Single Not used - deprecated
cVPN3000-WebVPN-Exchange-Server-
NETBIOS-Name
59 String Single Not used - deprecated
cVPN3000-Port-Forwarding-Name Y Y 60 String Single Name string (for example,
"Corporate-Apps")
cVPN3000-IETF-Radius-Framed-IP-
Address
YYY61StringSingleAn IP address
cVPN3000-IETF-Radius-Framed-IP-
Netmask
YYY62StringSingleAn IP address
cVPN3000-IETF-Radius-Session-TimeoutYYY63IntegerSingle1-35791394 minutes
0 = Unlimited
cVPN3000-IETF-Radius-Idle-Timeout YYY64IntegerSingle1-35791394 minutes
0 = Unlimited
cVPN3000-IETF-Radius-Class YYY65StringSingleGroup name string. Use any of
the these three formats:
OU=Engineering
OU=Engineering;
Engineering
cVPN3000-IETF-Radius-Filter-Id YYY66StringSingleAn access-list
cVPN3000-Authorization-Required Y 67 Integer Single 0 = No
1 = Yes
cVPN3000-Authorization-Type Y 68 Integer Single 0 = None
1 = RADIUS
2 = LDAP
Table E-2 Security Appliance Supported LDAP Cisco Schema Attributes (continued)
Attribute Name/
OID (Object Identifier)
VPN
3000 ASA PIX
Attr.
OID
1
Syntax/
Type
Single
or
Multi-
Valued Possible Values
To Next Page
Loading...
