E-27
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Appendix E Configuring an External Server for Authorization and Authentication
Configuring an External RADIUS Server
IPSec-Split-DNS-Names
YYY
29 String
Single
Specifies the list of secondary
domain names to send to the
client (1-255 characters)
IPSec-Tunnel-Type
YYY
30 Integer
Single
1 = LAN-to-LAN
2 = Remote access
IPSec-Mode-Config
YYY
31 Boolean
Single
0 = Disabled
1 = Enabled
IPSec-User-Group-Lock Y 33 Boolean
Single
0 = Disabled
1 = Enabled
IPSec-Over-UDP
YYY
34 Boolean
Single
0 = Disabled
1 = Enabled
IPSec-Over-UDP-Port
YYY
35 Integer
Single
4001 - 49151, default = 10000
Banner2
YYY
36 String
Single
A banner string. Banner2 string
will be concatenated to
Banner1 string if configured.
PPTP-MPPC-Compression Y 37 Integer
Single
0 = Disabled
1 = Enabled
L2TP-MPPC-Compression Y 38 Integer
Single
0 = Disabled
1 = Enabled
IPSec-IP-Compression
YYY
39 Integer
Single
0 = Disabled
1 = Enabled
IPSec-IKE-Peer-ID-Check
YYY
40 Integer
Single
1 = Required
2 = If supported by peer
certificate
3 = Do not check
IKE-Keep-Alives
YYY
41 Boolean
Single
0 = Disabled
1 = Enabled
IPSec-Auth-On-Rekey
YYY
42 Boolean
Single
0 = Disabled
1 = Enabled
Table E-4 Security Appliance Supported RADIUS Attributes and Values (continued)
Attribute Name
VPN
3000 ASA PIX
Attr.
#
Syntax/
Type
Single
or
Multi-
Valued
Single or Multi-
Valued
To Next Page
Loading...
