2007-11-03 11:22:20 -05:00
|
|
|
# This is a LDAPv3 schema for RADIUS attributes.
|
|
|
|
|
# Tested on OpenLDAP 2.0.7
|
|
|
|
|
# Posted by Javier Fernandez-Sanguino Pena <jfernandez@sgi.es>
|
|
|
|
|
# LDAP v3 version by Jochen Friedrich <jochen@scram.de>
|
|
|
|
|
# Updates by Adrian Pavlykevych <pam@polynet.lviv.ua>
|
|
|
|
|
# Modified by John Dennis <jdennis@redhat.com> for use with Directory Sever/IPA
|
2007-11-09 23:09:07 -06:00
|
|
|
#
|
|
|
|
|
# Note: These OID's do not seem to be registered, the closest I could find
|
|
|
|
|
# was 1.3.6.1.4.1.3317
|
|
|
|
|
# {iso(1) identified-organization(3) dod(6) internet(1) private(4) enterprise(1) gnome(3317)}
|
|
|
|
|
#
|
2007-11-03 11:22:20 -05:00
|
|
|
##############
|
|
|
|
|
dn: cn=schema
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.1
|
|
|
|
|
NAME 'radiusArapFeatures'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.2
|
|
|
|
|
NAME 'radiusArapSecurity'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.3
|
|
|
|
|
NAME 'radiusArapZoneAccess'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.44
|
|
|
|
|
NAME 'radiusAuthType'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.4
|
|
|
|
|
NAME 'radiusCallbackId'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.5
|
|
|
|
|
NAME 'radiusCallbackNumber'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.6
|
|
|
|
|
NAME 'radiusCalledStationId'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.7
|
|
|
|
|
NAME 'radiusCallingStationId'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.8
|
|
|
|
|
NAME 'radiusClass'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.45
|
|
|
|
|
NAME 'radiusClientIPAddress'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.9
|
|
|
|
|
NAME 'radiusFilterId'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.10
|
|
|
|
|
NAME 'radiusFramedAppleTalkLink'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.11
|
|
|
|
|
NAME 'radiusFramedAppleTalkNetwork'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.12
|
|
|
|
|
NAME 'radiusFramedAppleTalkZone'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.13
|
|
|
|
|
NAME 'radiusFramedCompression'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.14
|
|
|
|
|
NAME 'radiusFramedIPAddress'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.15
|
|
|
|
|
NAME 'radiusFramedIPNetmask'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.16
|
|
|
|
|
NAME 'radiusFramedIPXNetwork'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.17
|
|
|
|
|
NAME 'radiusFramedMTU'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.18
|
|
|
|
|
NAME 'radiusFramedProtocol'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.19
|
|
|
|
|
NAME 'radiusFramedRoute'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.20
|
|
|
|
|
NAME 'radiusFramedRouting'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.46
|
|
|
|
|
NAME 'radiusGroupName'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.47
|
|
|
|
|
NAME 'radiusHint'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.48
|
|
|
|
|
NAME 'radiusHuntgroupName'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.21
|
|
|
|
|
NAME 'radiusIdleTimeout'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.22
|
|
|
|
|
NAME 'radiusLoginIPHost'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.23
|
|
|
|
|
NAME 'radiusLoginLATGroup'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.24
|
|
|
|
|
NAME 'radiusLoginLATNode'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.25
|
|
|
|
|
NAME 'radiusLoginLATPort'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.26
|
|
|
|
|
NAME 'radiusLoginLATService'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.27
|
|
|
|
|
NAME 'radiusLoginService'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.28
|
|
|
|
|
NAME 'radiusLoginTCPPort'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.29
|
|
|
|
|
NAME 'radiusPasswordRetry'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.30
|
|
|
|
|
NAME 'radiusPortLimit'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.49
|
|
|
|
|
NAME 'radiusProfileDn'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY distinguishedNameMatch
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.31
|
|
|
|
|
NAME 'radiusPrompt'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.50
|
|
|
|
|
NAME 'radiusProxyToRealm'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.51
|
|
|
|
|
NAME 'radiusReplicateToRealm'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.52
|
|
|
|
|
NAME 'radiusRealm'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.32
|
|
|
|
|
NAME 'radiusServiceType'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.33
|
|
|
|
|
NAME 'radiusSessionTimeout'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.34
|
|
|
|
|
NAME 'radiusTerminationAction'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.35
|
|
|
|
|
NAME 'radiusTunnelAssignmentId'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.36
|
|
|
|
|
NAME 'radiusTunnelMediumType'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.37
|
|
|
|
|
NAME 'radiusTunnelPassword'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.38
|
|
|
|
|
NAME 'radiusTunnelPreference'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.39
|
|
|
|
|
NAME 'radiusTunnelPrivateGroupId'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.40
|
|
|
|
|
NAME 'radiusTunnelServerEndpoint'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.41
|
|
|
|
|
NAME 'radiusTunnelType'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.42
|
|
|
|
|
NAME 'radiusVSA'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.43
|
|
|
|
|
NAME 'radiusTunnelClientEndpoint'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
#need to change asn1.id
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.53
|
|
|
|
|
NAME 'radiusSimultaneousUse'
|
|
|
|
|
DESC ''
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.54
|
|
|
|
|
NAME 'radiusLoginTime'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.55
|
|
|
|
|
NAME 'radiusUserCategory'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.56
|
|
|
|
|
NAME 'radiusStripUserName'
|
|
|
|
|
DESC ''
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.57
|
|
|
|
|
NAME 'dialupAccess'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.58
|
|
|
|
|
NAME 'radiusExpiration'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.59
|
|
|
|
|
NAME 'radiusCheckItem'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.60
|
|
|
|
|
NAME 'radiusReplyItem'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.61
|
|
|
|
|
NAME 'radiusNASIpAddress'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.62
|
|
|
|
|
NAME 'radiusReplyMessage'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
objectClasses:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.2.1
|
|
|
|
|
NAME 'radiusprofile'
|
|
|
|
|
SUP top AUXILIARY
|
|
|
|
|
DESC ''
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
MUST uid
|
2007-11-03 11:22:20 -05:00
|
|
|
MAY ( radiusArapFeatures $ radiusArapSecurity $ radiusArapZoneAccess $
|
|
|
|
|
radiusAuthType $ radiusCallbackId $ radiusCallbackNumber $
|
|
|
|
|
radiusCalledStationId $ radiusCallingStationId $ radiusClass $
|
|
|
|
|
radiusClientIPAddress $ radiusFilterId $ radiusFramedAppleTalkLink $
|
|
|
|
|
radiusFramedAppleTalkNetwork $ radiusFramedAppleTalkZone $
|
|
|
|
|
radiusFramedCompression $ radiusFramedIPAddress $
|
|
|
|
|
radiusFramedIPNetmask $ radiusFramedIPXNetwork $
|
|
|
|
|
radiusFramedMTU $ radiusFramedProtocol $
|
|
|
|
|
radiusCheckItem $ radiusReplyItem $
|
|
|
|
|
radiusFramedRoute $ radiusFramedRouting $ radiusIdleTimeout $
|
|
|
|
|
radiusGroupName $ radiusHint $ radiusHuntgroupName $
|
|
|
|
|
radiusLoginIPHost $ radiusLoginLATGroup $ radiusLoginLATNode $
|
|
|
|
|
radiusLoginLATPort $ radiusLoginLATService $ radiusLoginService $
|
|
|
|
|
radiusLoginTCPPort $ radiusLoginTime $ radiusPasswordRetry $
|
|
|
|
|
radiusPortLimit $ radiusPrompt $ radiusProxyToRealm $
|
|
|
|
|
radiusRealm $ radiusReplicateToRealm $ radiusServiceType $
|
|
|
|
|
radiusSessionTimeout $ radiusStripUserName $
|
|
|
|
|
radiusTerminationAction $ radiusTunnelClientEndpoint $ radiusProfileDn $
|
|
|
|
|
radiusSimultaneousUse $ radiusTunnelAssignmentId $
|
|
|
|
|
radiusTunnelMediumType $ radiusTunnelPassword $ radiusTunnelPreference $
|
|
|
|
|
radiusTunnelPrivateGroupId $ radiusTunnelServerEndpoint $
|
|
|
|
|
radiusTunnelType $ radiusUserCategory $ radiusVSA $
|
|
|
|
|
radiusExpiration $ dialupAccess $ radiusNASIpAddress $
|
|
|
|
|
radiusReplyMessage )
|
|
|
|
|
)
|
|
|
|
|
objectClasses:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.2.2
|
|
|
|
|
NAME 'radiusObjectProfile'
|
|
|
|
|
SUP top STRUCTURAL
|
|
|
|
|
DESC 'A Container Objectclass to be used for creating radius profile object'
|
|
|
|
|
MUST cn
|
|
|
|
|
MAY ( uid $ userPassword $ description )
|
|
|
|
|
)
|
2007-11-09 23:09:07 -06:00
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.64
|
|
|
|
|
NAME 'radiusClientSecret'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.65
|
|
|
|
|
NAME 'radiusClientNASType'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
SINGLE-VALUE
|
|
|
|
|
)
|
|
|
|
|
attributeTypes:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.1.66
|
|
|
|
|
NAME 'radiusClientShortName'
|
|
|
|
|
DESC ''
|
|
|
|
|
EQUALITY caseIgnoreIA5Match
|
|
|
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
|
|
)
|
|
|
|
|
objectClasses:
|
|
|
|
|
( 1.3.6.1.4.1.3317.4.3.2.3
|
|
|
|
|
NAME 'radiusClientProfile'
|
|
|
|
|
SUP top STRUCTURAL
|
|
|
|
|
DESC 'A Container Objectclass to be used for describing radius clients'
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
MUST (radiusClientIPAddress $ radiusClientSecret)
|
2007-11-14 15:01:27 -06:00
|
|
|
MAY ( radiusClientNASType $ radiusClientShortName $ description )
|
2007-11-09 23:09:07 -06:00
|
|
|
)
|
