ENTERASYS-TACACS-CLIENT-MIB
File:
ENTERASYS-TACACS-CLIENT-MIB.mib (17916 bytes)
Imported modules
Imported symbols
Defined Types
EtsysTacacsClientSesnAuthEntry |
|
SEQUENCE |
|
|
|
|
etsysTacacsClientSesnAuthLevel |
INTEGER |
|
|
etsysTacacsClientSesnAuthAttribute |
SnmpAdminString |
|
|
etsysTacacsClientSesnAuthValue |
SnmpAdminString |
|
EtsysTacacsClientServerEntry |
|
SEQUENCE |
|
|
|
|
etsysTacacsClientServerIndex |
Integer32 |
|
|
etsysTacacsClientServerAddressType |
InetAddressType |
|
|
etsysTacacsClientServerAddress |
InetAddress |
|
|
etsysTacacsClientServerPortNumber |
InetPortNumber |
|
|
etsysTacacsClientServerTimeout |
Integer32 |
|
|
etsysTacacsClientServerSecret |
OCTET STRING |
|
|
etsysTacacsClientServerSecretEntered |
TruthValue |
|
|
etsysTacacsClientServerStatus |
RowStatus |
|
Defined Values
etsysTacacsClientMIB |
1.3.6.1.4.1.5624.1.2.58 |
This MIB module defines a portion of the SNMP MIB under
the Enterasys Networks enterprise OID pertaining to
TACACS+ client configuration. |
MODULE-IDENTITY |
|
|
|
etsysTacacsClientSingleConnection |
1.3.6.1.4.1.5624.1.2.58.1.1.5 |
Allows the TACACS+ client to send multiple TACACS+ requests
on a single TCP connection. All configured TACACS+ servers
MUST allow this NAS to use single connection mode. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
EnabledStatus |
|
|
etsysTacacsClientSesnAuthEntry |
1.3.6.1.4.1.5624.1.2.58.1.2.2.1 |
A TACACS+ server that this client may attempt to use. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
EtsysTacacsClientSesnAuthEntry |
|
|
etsysTacacsClientSesnAuthLevel |
1.3.6.1.4.1.5624.1.2.58.1.2.2.1.1 |
The authorization level for the corresponding attribute
value pair. Managed entities are not required to support
all authorization levels. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
INTEGER |
readonly(1), readwrite(2), superuser(3), debug(4) |
|
etsysTacacsClientSesnAuthAttribute |
1.3.6.1.4.1.5624.1.2.58.1.2.2.1.2 |
The attribute part of the attribute-value pair for this
access level. The default value 'priv-lvl' is normally
defined to have a corresponding value part with a value
between '0' and '15' inclusive. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
etsysTacacsClientSesnAuthValue |
1.3.6.1.4.1.5624.1.2.58.1.2.2.1.3 |
The value part of the attribute-value pair for this access
level.
To allow the leveraging of existing Cisco 'enable' mode
configurations. When
1.) the etsysTacacsClientSesnAuthService object has the value
'enable',
2.) the attribute part of this attribute-value pair is
'priv-lvl',
and
3.) the value part of this attribute-value pair represents a
numeric value between 0 and 15, inclusive,
then the value part of this attribute-value pair specifies the
minimum value required for this access level.
If any of the above conditions are not met then this value
must be an exact match with the value returned from the TACACS+
server.
The default values for this object are '0' for read-only,
'1' for read-write, and '15' for superuser authorization. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
etsysTacacsClientServerEntry |
1.3.6.1.4.1.5624.1.2.58.1.3.1.1 |
A TACACS+ server that this client may attempt to use. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
EtsysTacacsClientServerEntry |
|
|
etsysTacacsClientServerIndex |
1.3.6.1.4.1.5624.1.2.58.1.3.1.1.1 |
A number uniquely identifying each conceptual row
in the etsysTacacsClientServerTable.
In the event of an agent restart, the same value of
etsysTacacsClientServerIndex must be used to identify
each conceptual row in etsysTacacsClientServerTable
as prior to the restart. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
Integer32 |
1..2147483647 |
|
etsysTacacsClientServerAddress |
1.3.6.1.4.1.5624.1.2.58.1.3.1.1.3 |
The Internet address for the TACACS+ server.
The etsysTacacsClientServerAddress may not be
empty due to the SIZE restriction. Also the size of
a DNS name is limited to 64 characters.
If a row is created administratively by an SNMP
operation and the address type value is dns(16), then
the agent stores the DNS name internally. A DNS name
lookup must be performed on the internally stored DNS
name whenever it is being used to contact the peer.
If a row is created by the managed entity itself and
the address type value is dns(16), then the agent
stores the IP address internally. A DNS reverse lookup
must be performed on the internally stored IP address
whenever the value is retrieved via SNMP. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
InetAddress |
Size(1..64) |
|
etsysTacacsClientServerTimeout |
1.3.6.1.4.1.5624.1.2.58.1.3.1.1.5 |
The number of seconds to wait for a TACACS+ server to
respond to a request. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
Integer32 |
1..180 |
|
etsysTacacsClientServerSecret |
1.3.6.1.4.1.5624.1.2.58.1.3.1.1.6 |
This object is the secret shared between the TACACS+
server and TACACS+ client. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
OCTET STRING |
Size(0..32) |
|
etsysTacacsClientServerStatus |
1.3.6.1.4.1.5624.1.2.58.1.3.1.1.8 |
Lets users create and delete TACACS+ server entries on
systems that support this capability.
Rules
1. When creating a TACACS+ client, it is up to the
management station to determine a suitable
etsysTacacsClientServerIndex. To facilitate
interoperability, agents should not put any
restrictions on the etsysTacacsClientServerIndex
beyond the obvious ones that it be valid and unused.
2. Before a new row can become 'active', values must
be supplied for the columnar objects
etsysTacacsClientServerAddress and
etsysTacacsClientServerSecret.
3. The value of etsysTacacsClientServerStatus MAY
need to be set to 'notInService' in order to modify
a writable object in the same conceptual row.
4. etsysTacacsClientServer entries whose
status is 'notReady' or 'notInService' will
not be used for authentication. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
RowStatus |
|
|
etsysTacacsClientSessionGroup |
1.3.6.1.4.1.5624.1.2.58.2.2.1 |
The collection of objects required to do TACACS+
authentication, authorization, and accounting for
management sessions. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|
etsysTacacsClientCmdAuthGroup |
1.3.6.1.4.1.5624.1.2.58.2.2.2 |
Additional objects for TACACS+ command authorization. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|
etsysTacacsClientCmdAcctGroup |
1.3.6.1.4.1.5624.1.2.58.2.2.3 |
Additional objects for TACACS+ command accounting. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|
etsysTacacsClientSesnAuthGroup |
1.3.6.1.4.1.5624.1.2.58.2.2.4 |
Additional objects to map read-only, read-write, superuser,
and debug authorization level into a service level and
respective attribute-value pairs. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|
etsysTacacsClientCompliance |
1.3.6.1.4.1.5624.1.2.58.2.1.1 |
The compliance statement for clients implementing the
TACACS+ Client MIB. |
Status: current |
Access: read-create |
MODULE-COMPLIANCE |
|
|
|