BIANCA-BRICK-TACACSP-MIB
File:
BIANCA-BRICK-TACACSP-MIB.mib (9409 bytes)
Imported modules
Imported symbols
Defined Types
| TacacspServerEntry |
|
| SEQUENCE |
|
|
|
| |
tacacspSrvPriority |
INTEGER |
|
| |
tacacspSrvAddress |
IpAddress |
|
| |
tacacspSrvTcpPort |
INTEGER |
|
| |
tacacspSrvSecret |
DisplayString |
|
| |
tacacspSrvTimeout |
INTEGER |
|
| |
tacacspSrvAdminStatus |
INTEGER |
|
| |
tacacspSrvOperStatus |
INTEGER |
|
| |
tacacspSrvPolicy |
INTEGER |
|
| |
tacacspSrvEncrMode |
INTEGER |
|
| |
tacacspSrvMultiSession |
INTEGER |
|
| |
tacacspSrvPppAuth |
INTEGER |
|
| |
tacacspSrvLoginAuth |
INTEGER |
|
| |
tacacspSrvAccounting |
INTEGER |
|
| |
tacacspSrvBlockTimeout |
INTEGER |
|
| |
tacacspSrvAuthentNoResp |
INTEGER |
|
| |
tacacspSrvAuthentNegResp |
INTEGER |
|
| |
tacacspSrvPrivLvlOnLogin |
INTEGER |
|
Defined Values
| bintec |
1.3.6.1.4.1.272 |
| OBJECT IDENTIFIER |
|
|
|
| bintecsec |
1.3.6.1.4.1.272.254 |
| OBJECT IDENTIFIER |
|
|
|
| tacacsp |
1.3.6.1.4.1.272.254.13 |
| OBJECT IDENTIFIER |
|
|
|
| tacacspServerEntry |
1.3.6.1.4.1.272.254.13.1.1 |
| Tok_String |
| Status: mandatory |
Access: not-accessible |
| OBJECT-TYPE |
|
|
|
| |
TacacspServerEntry |
|
|
| tacacspSrvPriority |
1.3.6.1.4.1.272.254.13.1.1.1 |
| The TACACS+ server with the lowest priority is the first
used for an TACACS+ AAA request. If there is no response
or the access was denied (in the non-authoritave case only,
see also tacacspSrvPolicy) the TACACS+ server with the next
lowest priority will be used. The default value is 0. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
0..9 |
|
| tacacspSrvAddress |
1.3.6.1.4.1.272.254.13.1.1.2 |
| The TACACS+ server IP address. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
IpAddress |
|
|
| tacacspSrvTcpPort |
1.3.6.1.4.1.272.254.13.1.1.3 |
| The Login Host Protocol (TACACS) TCP port assigned
by the IANA. |
| Status: mandatory |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
|
|
| tacacspSrvSecret |
1.3.6.1.4.1.272.254.13.1.1.4 |
| The shared secret between the TACACS+ server and the NAS
(encryption key in the TACACS+ server's configuration file). |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
DisplayString |
|
|
| tacacspSrvTimeout |
1.3.6.1.4.1.272.254.13.1.1.5 |
| The amount of seconds waiting for an outstanding TACACS+
response. Default is three seconds. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
1..60 |
|
| tacacspSrvAdminStatus |
1.3.6.1.4.1.272.254.13.1.1.7 |
| The administrative status of this TACACS+ server entry,
if set to up(1) the associated server will be used
for authentication, authorization and accounting according
the priority (see tacacspSrvPriority) and the current
operational status (see tacacspSrvOperStatus). Otherwise
this entry will not be considered for TACACS+ AAA requests. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
up(1), down(2), delete(3) |
|
| tacacspSrvOperStatus |
1.3.6.1.4.1.272.254.13.1.1.8 |
| The operational status of this TACACS+ server entry, the
status blocked will be set after a failed TACACS+ request.
If set to blocked(2) or down(3) this entry will not be
considered for TACACS+ AAA requests. |
| Status: mandatory |
Access: read-only |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
up(1), blocked(2), down(3) |
|
| tacacspSrvPolicy |
1.3.6.1.4.1.272.254.13.1.1.9 |
| If set to authoritative(1), a negative answer to a
request will be accepted. This is not necessarily
true when set to non-authoritative(2), where the
next TACACS+ server will be asked until there is
finally an authoritative(1) server configured. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
authoritative(1), non-authoritative(2) |
|
| tacacspSrvEncrMode |
1.3.6.1.4.1.272.254.13.1.1.10 |
| If set to encrypt(1) the TACACS+ packet will be MD5
encrypted. Otherwise - if set to cleartext(2) - the packet
and therefore all related information will be send
unencrypted. This mode is intended for testing but not
recommended for normal use. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
encrypt(1), cleartext(2) |
|
| tacacspSrvMultiSession |
1.3.6.1.4.1.272.254.13.1.1.11 |
| If enabled(1) multiple TACACS+ sessions (subsequent TACACS+
requests) may be supported simultaneously over a single TCP
connection. If multiple sessions are not being multiplexed
over a single TCP connection, a new connection will be opened
for each TACACS+ session and closed at the end of that
session. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
enabled(1), disabled(2) |
|
| tacacspSrvPppAuth |
1.3.6.1.4.1.272.254.13.1.1.13 |
| Enables the PPP authentication for the associated TACACS+
server. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
disabled(1), enabled(2) |
|
| tacacspSrvLoginAuth |
1.3.6.1.4.1.272.254.13.1.1.14 |
| Enables the login authentication (shell) for the associated
TACACS+ server. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
disabled(1), enabled(2) |
|
| tacacspSrvAccounting |
1.3.6.1.4.1.272.254.13.1.1.15 |
| Enables the TACACS+ accounting for the associated TACACS+
server. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
disabled(1), enabled(2) |
|
| tacacspSrvBlockTimeout |
1.3.6.1.4.1.272.254.13.1.1.16 |
| Timeout in seconds for the blocked status (see also
tacacspSrvOperStatus), if expired, the operational status
is set to up(1) or down(3) according the the current
tacacspSrvAdminStatus. When set to zero, the operational
status is never set to blocked. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
0..3600 |
|
| tacacspSrvAuthentNoResp |
1.3.6.1.4.1.272.254.13.1.1.17 |
| Possible actions for the client when no response from servers :
- allowing the connection to the router by local login pwd (2)
- or stop the negociation (3). |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
connection-bydefault(1), connection-bylocalloginpwd(2), connection-forbidden(3) |
|
| tacacspSrvAuthentNegResp |
1.3.6.1.4.1.272.254.13.1.1.18 |
| Possible actions for the client when negative response :
from servers.
- allowing the connection to the router by local login pwd (2)
- or stop the negociation (3). |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
connection-bydefault(1), connection-bylocalloginpwd(2), connection-forbidden(3) |
|
| tacacspSrvPrivLvlOnLogin |
1.3.6.1.4.1.272.254.13.1.1.19 |
| Configurable TACACS+ privilege level assigned after
successful authentication procedure. This user-specific
privilege level is needed for the subsequent command
authorization request(s). Note that the user is free to
change that initial privilege level via the 'enab'
command, provided that it's enabled on the TACACS+ server.
If set to -1, this parameter will be ignored. |
| Status: mandatory |
Access: read-write |
| OBJECT-TYPE |
|
|
|
| |
INTEGER |
-1..15 |
|