beautypg.com

Cisco 3.3 User Manual

Page 806

background image

Appendix F RDBMS Synchronization Import Definitions

Action Codes

F-20

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

163

ADD_RADIUS_ ATTR UN|GN,

VN, V1,
Optionally
V2, V3

Adds to the attribute named (VN) the value (V1) for
the user/group (UN|GN). For example, to set the IETF
RADIUS Reply-Message attribute (attr. 18) for a
group:

GN = "Group 1"

VN = "Reply-Message"

V1 = "Greetings"

As another example, to set the IETF RADIUS
Framed-IP-Address attribute (attr. 9) for a user:

UN = "fred"

VN = "Framed-IP-Address"

V1 = "10.1.1.1"

To add a vendor-specific attribute (VSA), set VN =
“Vendor-Specific” and use V2 and V3 as follows:

V2 = IETF vendor ID

V3 = VSA attribute ID

For example, to add the Cisco IOS/PIX RADIUS
cisco-av-pair attribute with a value of
“addr-pool=pool1”:

VN="Vendor-Specific"

V1 = "addr-pool=pool1"

V2 = "9"

V3 = "1"

RADIUS attribute values can be one of the following:

INTEGER

TIME

IP ADDRESS

STRING

Table F-5

Action Codes for Modifying TACACS+ and RADIUS Group and User Settings (continued)

Action
Code

Name

Required

Description