Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

56

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Configuring RADIUS security

1

foundry-access-list

5

string

Specifies the access control list to be used for
RADIUS authorization. Enter the access control list in
the following format.
type=string, value=”ipacl.[e|s].[in|out] =
[acl-name|acl-number] separator macfilter.in =
[acl-name|acl-number]

Where:

•

separator can be a space, new line, semicolon,
comma, or null character

•

ipacl.e is extended ACL; ipacl.s is standard ACL.

NOTE: Outbound MAC filters are not supported, but

outbound ACLs with 802.1X authentication is
supported.

foundry-MAC-authent-needs-
802x

6

integer

Specifies whether or not 802.1x authentication is
required and enabled.
0 - Disabled
1 - Enabled

foundry-802.1x-valid-lookup

7

integer

Specifies if 802.1x lookup is enabled:
0 - Disabled
1 - Enabled

foundry-MAC-based-VLAN-Q
OS

8

integer

Specifies the priority for MAC-based VLAN QOS:
0 - qos_priority_0
1 - qos_priority_1
2 - qos_priority_2
3 - qos_priority_3
4 - qos_priority_4
5 - qos_priority_5
6 - qos_priority_6
7 - qos_priority_7

foundry-INM-Role-AOR-List

9

string

Specifies the list of Roles and Area of Responsibility
(AOR) that are allowed for an Brocade Network
Advisor

user. These values are mapped to Brocade

Network Advisor Roles and AORs when the user logs
in.
For example, to configure an Brocade Network
Advisor

user to have “Administrator” and “Report

User” roles and “New York Region” and “Santa Clara
Region” AORs, specify “NmRoles=Administrator,
Report User; NmAORs=New York Region, Santa Clara
Region”. The keys “NmRoles” and “NmAORs” are
delimited by semi colon (;) and the values for the
keys are delimited by a comma (,).
Refer to the IronView Network Manager User Guide
for details.

TABLE 10

Vendor-specific attributes for RADIUS

Attribute name

Attribute ID

Data type

Description