mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-28 18:01:23 -06:00
d98686e967
get_radius_profile_by_uid add_radius_profile update_radius_profile delete_radius_profile find_radius_profiles Rewrite command line arg handling, now support pair entry, interactive mode with auto completion, reading pairs from a file, better handling of mandatory values, better help, long arg names now match attribute name in pairs Establish mappings for all attributes and names used in clients and profiles Add notion of containers to radius clients and profiles in LDAP Move common code, variables, constants, and strings into the files radius_client.py, radius_util.py, ipautil.py to eliminate redundant elements which could get out of sync if modified and to provide access to other code which might benefit from using these items in the future. Add utility functions: format_list() parse_key_value_pairs() Add utility class: AttributeValueCompleter Unify attribute usage in radius ldap schema
562 lines
16 KiB
Plaintext
562 lines
16 KiB
Plaintext
# This is a LDAPv3 schema for RADIUS attributes.
|
|
# Tested on OpenLDAP 2.0.7
|
|
# Posted by Javier Fernandez-Sanguino Pena <jfernandez@sgi.es>
|
|
# LDAP v3 version by Jochen Friedrich <jochen@scram.de>
|
|
# Updates by Adrian Pavlykevych <pam@polynet.lviv.ua>
|
|
# Modified by John Dennis <jdennis@redhat.com> for use with Directory Sever/IPA
|
|
#
|
|
# Note: These OID's do not seem to be registered, the closest I could find
|
|
# was 1.3.6.1.4.1.3317
|
|
# {iso(1) identified-organization(3) dod(6) internet(1) private(4) enterprise(1) gnome(3317)}
|
|
#
|
|
##############
|
|
dn: cn=schema
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.1
|
|
NAME 'radiusArapFeatures'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.2
|
|
NAME 'radiusArapSecurity'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.3
|
|
NAME 'radiusArapZoneAccess'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.44
|
|
NAME 'radiusAuthType'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.4
|
|
NAME 'radiusCallbackId'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.5
|
|
NAME 'radiusCallbackNumber'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.6
|
|
NAME 'radiusCalledStationId'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.7
|
|
NAME 'radiusCallingStationId'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.8
|
|
NAME 'radiusClass'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.45
|
|
NAME 'radiusClientIPAddress'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.9
|
|
NAME 'radiusFilterId'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.10
|
|
NAME 'radiusFramedAppleTalkLink'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.11
|
|
NAME 'radiusFramedAppleTalkNetwork'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.12
|
|
NAME 'radiusFramedAppleTalkZone'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.13
|
|
NAME 'radiusFramedCompression'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.14
|
|
NAME 'radiusFramedIPAddress'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.15
|
|
NAME 'radiusFramedIPNetmask'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.16
|
|
NAME 'radiusFramedIPXNetwork'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.17
|
|
NAME 'radiusFramedMTU'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.18
|
|
NAME 'radiusFramedProtocol'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.19
|
|
NAME 'radiusFramedRoute'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.20
|
|
NAME 'radiusFramedRouting'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.46
|
|
NAME 'radiusGroupName'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.47
|
|
NAME 'radiusHint'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.48
|
|
NAME 'radiusHuntgroupName'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.21
|
|
NAME 'radiusIdleTimeout'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.22
|
|
NAME 'radiusLoginIPHost'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.23
|
|
NAME 'radiusLoginLATGroup'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.24
|
|
NAME 'radiusLoginLATNode'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.25
|
|
NAME 'radiusLoginLATPort'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.26
|
|
NAME 'radiusLoginLATService'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.27
|
|
NAME 'radiusLoginService'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.28
|
|
NAME 'radiusLoginTCPPort'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.29
|
|
NAME 'radiusPasswordRetry'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.30
|
|
NAME 'radiusPortLimit'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.49
|
|
NAME 'radiusProfileDn'
|
|
DESC ''
|
|
EQUALITY distinguishedNameMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.31
|
|
NAME 'radiusPrompt'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.50
|
|
NAME 'radiusProxyToRealm'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.51
|
|
NAME 'radiusReplicateToRealm'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.52
|
|
NAME 'radiusRealm'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.32
|
|
NAME 'radiusServiceType'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.33
|
|
NAME 'radiusSessionTimeout'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.34
|
|
NAME 'radiusTerminationAction'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.35
|
|
NAME 'radiusTunnelAssignmentId'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.36
|
|
NAME 'radiusTunnelMediumType'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.37
|
|
NAME 'radiusTunnelPassword'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.38
|
|
NAME 'radiusTunnelPreference'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.39
|
|
NAME 'radiusTunnelPrivateGroupId'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.40
|
|
NAME 'radiusTunnelServerEndpoint'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.41
|
|
NAME 'radiusTunnelType'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.42
|
|
NAME 'radiusVSA'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.43
|
|
NAME 'radiusTunnelClientEndpoint'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
#need to change asn1.id
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.53
|
|
NAME 'radiusSimultaneousUse'
|
|
DESC ''
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.54
|
|
NAME 'radiusLoginTime'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.55
|
|
NAME 'radiusUserCategory'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.56
|
|
NAME 'radiusStripUserName'
|
|
DESC ''
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.57
|
|
NAME 'dialupAccess'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.58
|
|
NAME 'radiusExpiration'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.59
|
|
NAME 'radiusCheckItem'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.60
|
|
NAME 'radiusReplyItem'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.61
|
|
NAME 'radiusNASIpAddress'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.62
|
|
NAME 'radiusReplyMessage'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
objectClasses:
|
|
( 1.3.6.1.4.1.3317.4.3.2.1
|
|
NAME 'radiusprofile'
|
|
SUP top AUXILIARY
|
|
DESC ''
|
|
MUST uid
|
|
MAY ( radiusArapFeatures $ radiusArapSecurity $ radiusArapZoneAccess $
|
|
radiusAuthType $ radiusCallbackId $ radiusCallbackNumber $
|
|
radiusCalledStationId $ radiusCallingStationId $ radiusClass $
|
|
radiusClientIPAddress $ radiusFilterId $ radiusFramedAppleTalkLink $
|
|
radiusFramedAppleTalkNetwork $ radiusFramedAppleTalkZone $
|
|
radiusFramedCompression $ radiusFramedIPAddress $
|
|
radiusFramedIPNetmask $ radiusFramedIPXNetwork $
|
|
radiusFramedMTU $ radiusFramedProtocol $
|
|
radiusCheckItem $ radiusReplyItem $
|
|
radiusFramedRoute $ radiusFramedRouting $ radiusIdleTimeout $
|
|
radiusGroupName $ radiusHint $ radiusHuntgroupName $
|
|
radiusLoginIPHost $ radiusLoginLATGroup $ radiusLoginLATNode $
|
|
radiusLoginLATPort $ radiusLoginLATService $ radiusLoginService $
|
|
radiusLoginTCPPort $ radiusLoginTime $ radiusPasswordRetry $
|
|
radiusPortLimit $ radiusPrompt $ radiusProxyToRealm $
|
|
radiusRealm $ radiusReplicateToRealm $ radiusServiceType $
|
|
radiusSessionTimeout $ radiusStripUserName $
|
|
radiusTerminationAction $ radiusTunnelClientEndpoint $ radiusProfileDn $
|
|
radiusSimultaneousUse $ radiusTunnelAssignmentId $
|
|
radiusTunnelMediumType $ radiusTunnelPassword $ radiusTunnelPreference $
|
|
radiusTunnelPrivateGroupId $ radiusTunnelServerEndpoint $
|
|
radiusTunnelType $ radiusUserCategory $ radiusVSA $
|
|
radiusExpiration $ dialupAccess $ radiusNASIpAddress $
|
|
radiusReplyMessage )
|
|
)
|
|
objectClasses:
|
|
( 1.3.6.1.4.1.3317.4.3.2.2
|
|
NAME 'radiusObjectProfile'
|
|
SUP top STRUCTURAL
|
|
DESC 'A Container Objectclass to be used for creating radius profile object'
|
|
MUST cn
|
|
MAY ( uid $ userPassword $ description )
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.64
|
|
NAME 'radiusClientSecret'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.65
|
|
NAME 'radiusClientNASType'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
SINGLE-VALUE
|
|
)
|
|
attributeTypes:
|
|
( 1.3.6.1.4.1.3317.4.3.1.66
|
|
NAME 'radiusClientShortName'
|
|
DESC ''
|
|
EQUALITY caseIgnoreIA5Match
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
)
|
|
# c->ipaddr = radiusNASIpAddress
|
|
# c->secret = radiusSecret
|
|
objectClasses:
|
|
( 1.3.6.1.4.1.3317.4.3.2.3
|
|
NAME 'radiusClientProfile'
|
|
SUP top STRUCTURAL
|
|
DESC 'A Container Objectclass to be used for describing radius clients'
|
|
MUST (radiusClientIPAddress $ radiusClientSecret)
|
|
MAY ( radiusClientNASType $ radiusClientShortName $ description )
|
|
)
|