ENTERASYS-TACACS-CLIENT-MIB

File: ENTERASYS-TACACS-CLIENT-MIB.mib (17421 bytes)

Imported modules

SNMPv2-SMI SNMPv2-CONF SNMPv2-TC
P-BRIDGE-MIB SNMP-FRAMEWORK-MIB INET-ADDRESS-MIB
ENTERASYS-MIB-NAMES

Imported symbols

MODULE-IDENTITY OBJECT-TYPE Integer32
MODULE-COMPLIANCE OBJECT-GROUP TruthValue
RowStatus EnabledStatus SnmpAdminString
InetAddressType InetAddress InetPortNumber
etsysModules

Defined Types

EtsysTacacsClientSesnAuthEntry  
SEQUENCE    
  etsysTacacsClientSesnAuthLevel INTEGER
  etsysTacacsClientSesnAuthAttribute SnmpAdminString
  etsysTacacsClientSesnAuthValue SnmpAdminString

EtsysTacacsClientServerEntry  
SEQUENCE    
  etsysTacacsClientServerIndex Integer32
  etsysTacacsClientServerAddressType InetAddressType
  etsysTacacsClientServerAddress InetAddress
  etsysTacacsClientServerPortNumber InetPortNumber
  etsysTacacsClientServerTimeout Integer32
  etsysTacacsClientServerSecret STRING
  etsysTacacsClientServerSecretEntered TruthValue
  etsysTacacsClientServerStatus RowStatus

Defined Values

etsysTacacsClientMIB 1.3.6.1.4.1.5624.1.2.58
This MIB module defines a portion of the SNMP MIB under the Enterasys Networks enterprise OID pertaining to TACACS+ client configuration.
MODULE-IDENTITY    

etsysTacacsClientObjects 1.3.6.1.4.1.5624.1.2.58.1
OBJECT IDENTIFIER    

etsysTacacsClientControl 1.3.6.1.4.1.5624.1.2.58.1.1
OBJECT IDENTIFIER    

etsysTacacsClientSesnAuth 1.3.6.1.4.1.5624.1.2.58.1.2
OBJECT IDENTIFIER    

etsysTacacsClientServer 1.3.6.1.4.1.5624.1.2.58.1.3
OBJECT IDENTIFIER    

etsysTacacsClientSesnAuthEnabled 1.3.6.1.4.1.5624.1.2.58.1.1.1
Controls the operation of the TACACS+ client for session authentication and authorization.
OBJECT-TYPE    
  EnabledStatus  

etsysTacacsClientSesnAcctEnabled 1.3.6.1.4.1.5624.1.2.58.1.1.2
Controls the operation of the TACACS+ client for session accounting.
OBJECT-TYPE    
  EnabledStatus  

etsysTacacsClientCmdAuthEnabled 1.3.6.1.4.1.5624.1.2.58.1.1.3
Controls the operation of the TACACS+ client for command level authorization.
OBJECT-TYPE    
  EnabledStatus  

etsysTacacsClientCmdAcctEnabled 1.3.6.1.4.1.5624.1.2.58.1.1.4
Controls the operation of the TACACS+ client for command accounting.
OBJECT-TYPE    
  EnabledStatus  

etsysTacacsClientSingleConnection 1.3.6.1.4.1.5624.1.2.58.1.1.5
Allows the TACACS+ client to send multiple TACACS+ requests on a single TCP connection. All configured TACACS+ servers MUST allow this NAS to use single connection mode.
OBJECT-TYPE    
  EnabledStatus  

etsysTacacsClientSesnAuthService 1.3.6.1.4.1.5624.1.2.58.1.2.1
The service to be requested for management session authorization.
OBJECT-TYPE    
  SnmpAdminString  

etsysTacacsClientSesnAuthTable 1.3.6.1.4.1.5624.1.2.58.1.2.2
A list of TACACS+ servers that this client may attempt to use.
OBJECT-TYPE    
  SEQUENCE OF  
    EtsysTacacsClientSesnAuthEntry

etsysTacacsClientSesnAuthEntry 1.3.6.1.4.1.5624.1.2.58.1.2.2.1
A TACACS+ server that this client may attempt to use.
OBJECT-TYPE    
  EtsysTacacsClientSesnAuthEntry  

etsysTacacsClientSesnAuthLevel 1.3.6.1.4.1.5624.1.2.58.1.2.2.1.1
The authorization level for the corresponding attribute value pair. Managed entities are not required to support all authorization levels.
OBJECT-TYPE    
  INTEGER readonly(1), readwrite(2), superuser(3), debug(4)  

etsysTacacsClientSesnAuthAttribute 1.3.6.1.4.1.5624.1.2.58.1.2.2.1.2
The attribute part of the attribute-value pair for this access level. The default value 'priv-lvl' is normally defined to have a corresponding value part with a value between '0' and '15' inclusive.
OBJECT-TYPE    
  SnmpAdminString  

etsysTacacsClientSesnAuthValue 1.3.6.1.4.1.5624.1.2.58.1.2.2.1.3
The value part of the attribute-value pair for this access level. To allow the leveraging of existing Cisco 'enable' mode configurations. When 1.) the etsysTacacsClientSesnAuthService object has the value 'enable', 2.) the attribute part of this attribute-value pair is 'priv-lvl', and 3.) the value part of this attribute-value pair represents a numeric value between 0 and 15, inclusive, then the value part of this attribute-value pair specifies the minimum value required for this access level. If any of the above conditions are not met then this value must be an exact match with the value returned from the TACACS+ server. The default values for this object are '0' for read-only, '1' for read-write, and '15' for superuser authorization.
OBJECT-TYPE    
  SnmpAdminString  

etsysTacacsClientServerTable 1.3.6.1.4.1.5624.1.2.58.1.3.1
A list of TACACS+ servers that this client may attempt to use.
OBJECT-TYPE    
  SEQUENCE OF  
    EtsysTacacsClientServerEntry

etsysTacacsClientServerEntry 1.3.6.1.4.1.5624.1.2.58.1.3.1.1
A TACACS+ server that this client may attempt to use.
OBJECT-TYPE    
  EtsysTacacsClientServerEntry  

etsysTacacsClientServerIndex 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.1
A number uniquely identifying each conceptual row in the etsysTacacsClientServerTable. In the event of an agent restart, the same value of etsysTacacsClientServerIndex must be used to identify each conceptual row in etsysTacacsClientServerTable as prior to the restart.
OBJECT-TYPE    
  Integer32 1..2147483647  

etsysTacacsClientServerAddressType 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.2
The type of Internet address by which this TACACS+ server is reachable.
OBJECT-TYPE    
  InetAddressType  

etsysTacacsClientServerAddress 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.3
The Internet address for the TACACS+ server. The etsysTacacsClientServerAddress may not be empty due to the SIZE restriction. Also the size of a DNS name is limited to 64 characters. If a row is created administratively by an SNMP operation and the address type value is dns(16), then the agent stores the DNS name internally. A DNS name lookup must be performed on the internally stored DNS name whenever it is being used to contact the peer. If a row is created by the managed entity itself and the address type value is dns(16), then the agent stores the IP address internally. A DNS reverse lookup must be performed on the internally stored IP address whenever the value is retrieved via SNMP.
OBJECT-TYPE    
  InetAddress Size(1..64)  

etsysTacacsClientServerPortNumber 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.4
The TCP port number (0-65535) the client is using to send requests to this server.
OBJECT-TYPE    
  InetPortNumber  

etsysTacacsClientServerTimeout 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.5
The number of seconds to wait for a TACACS+ server to respond to a request.
OBJECT-TYPE    
  Integer32 1..180  

etsysTacacsClientServerSecret 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.6
This object is the secret shared between the TACACS+ server and TACACS+ client.
OBJECT-TYPE    
  STRING Size(0..32)  

etsysTacacsClientServerSecretEntered 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.7
This indicates the existence of a shared secret.
OBJECT-TYPE    
  TruthValue  

etsysTacacsClientServerStatus 1.3.6.1.4.1.5624.1.2.58.1.3.1.1.8
Lets users create and delete TACACS+ server entries on systems that support this capability. Rules 1. When creating a TACACS+ client, it is up to the management station to determine a suitable etsysTacacsClientServerIndex. To facilitate interoperability, agents should not put any restrictions on the etsysTacacsClientServerIndex beyond the obvious ones that it be valid and unused. 2. Before a new row can become 'active', values must be supplied for the columnar objects etsysTacacsClientServerAddress and etsysTacacsClientServerSecret. 3. The value of etsysTacacsClientServerStatus MAY need to be set to 'notInService' in order to modify a writable object in the same conceptual row. 4. etsysTacacsClientServer entries whose status is 'notReady' or 'notInService' will not be used for authentication.
OBJECT-TYPE    
  RowStatus  

etsysTacacsClientConformance 1.3.6.1.4.1.5624.1.2.58.2
OBJECT IDENTIFIER    

etsysTacacsClientCompliances 1.3.6.1.4.1.5624.1.2.58.2.1
OBJECT IDENTIFIER    

etsysTacacsClientGroups 1.3.6.1.4.1.5624.1.2.58.2.2
OBJECT IDENTIFIER    

etsysTacacsClientSessionGroup 1.3.6.1.4.1.5624.1.2.58.2.2.1
The collection of objects required to do TACACS+ authentication, authorization, and accounting for management sessions.
OBJECT-GROUP    

etsysTacacsClientCmdAuthGroup 1.3.6.1.4.1.5624.1.2.58.2.2.2
Additional objects for TACACS+ command authorization.
OBJECT-GROUP    

etsysTacacsClientCmdAcctGroup 1.3.6.1.4.1.5624.1.2.58.2.2.3
Additional objects for TACACS+ command accounting.
OBJECT-GROUP    

etsysTacacsClientSesnAuthGroup 1.3.6.1.4.1.5624.1.2.58.2.2.4
Additional objects to map read-only, read-write, superuser, and debug authorization level into a service level and respective attribute-value pairs.
OBJECT-GROUP    

etsysTacacsClientCompliance 1.3.6.1.4.1.5624.1.2.58.2.1.1
This group is REQUIRED for devices supporting any of the following authorization levels: read-only, read-write, superuser, or debug.
MODULE-COMPLIANCE