2706 lines
92 KiB
Plaintext
2706 lines
92 KiB
Plaintext
-- *****************************************************************
|
|
-- FS-AAA-MIB.mib: FS AAA MIB file
|
|
--
|
|
-- March 2002, Wuzg
|
|
--
|
|
-- Copyright (c) 2002 by FS.COM Inc..
|
|
-- All rights reserved.
|
|
--
|
|
-- *****************************************************************
|
|
--
|
|
|
|
FS-AAA-MIB DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
MODULE-IDENTITY,
|
|
OBJECT-TYPE,
|
|
Counter32,
|
|
Unsigned32,
|
|
Integer32,
|
|
IpAddress
|
|
FROM SNMPv2-SMI
|
|
InetAddressType,
|
|
InetAddress
|
|
FROM INET-ADDRESS-MIB
|
|
Counter
|
|
FROM RFC1155-SMI
|
|
TruthValue,
|
|
DisplayString,
|
|
RowStatus,
|
|
MacAddress
|
|
FROM SNMPv2-TC
|
|
MODULE-COMPLIANCE,
|
|
OBJECT-GROUP
|
|
FROM SNMPv2-CONF
|
|
ConfigStatus,
|
|
IfIndex
|
|
FROM FS-TC
|
|
EnabledStatus
|
|
FROM P-BRIDGE-MIB
|
|
radiusAuthServerAddress,
|
|
radiusAuthClientServerPortNumber
|
|
FROM RADIUS-AUTH-CLIENT-MIB
|
|
radiusAccServerAddress,
|
|
radiusAccClientServerPortNumber
|
|
FROM RADIUS-ACC-CLIENT-MIB
|
|
fsMgmt
|
|
FROM FS-SMI;
|
|
|
|
fsAAAMIB MODULE-IDENTITY
|
|
LAST-UPDATED "200203200000Z"
|
|
ORGANIZATION "FS.COM Inc.."
|
|
CONTACT-INFO
|
|
"
|
|
Tel: 400-865-2852
|
|
|
|
E-mail: https://www.fs.com/live_chat_service_mail.html"
|
|
DESCRIPTION
|
|
"This module defines fs AAA(802.1x) mibs."
|
|
REVISION "200203200000Z"
|
|
DESCRIPTION
|
|
"Initial version of this MIB module."
|
|
::= { fsMgmt 19}
|
|
|
|
fsAAAMIBObjects OBJECT IDENTIFIER ::= { fsAAAMIB 1 }
|
|
|
|
fsDot1xAuthObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 1 }
|
|
fsAAAServerObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 2 }
|
|
fsAuthUserObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 3 }
|
|
fsAuthModeObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 4 }
|
|
fsClientProbeObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 5 }
|
|
|
|
--
|
|
-- fsDot1xAuth Groupfor 802.1x global settings.
|
|
--
|
|
fsDot1xAuthStatus OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The enable(1)/disable(2) control used by the
|
|
802.1x global settings."
|
|
DEFVAL { disabled }
|
|
::= { fsDot1xAuthObjects 1 }
|
|
|
|
fsDot1xAuthObjectsQuietPeriod OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the quietPeriod constant
|
|
currently in use by the Authenticator PAE state
|
|
machine."
|
|
DEFVAL { 60 }
|
|
::= { fsDot1xAuthObjects 2 }
|
|
|
|
fsDot1xAuthObjectsTxPeriod OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the txPeriod constant
|
|
currently in use by the Authenticator PAE state
|
|
machine."
|
|
DEFVAL { 30 }
|
|
::= { fsDot1xAuthObjects 3 }
|
|
|
|
fsDot1xAuthObjectsSuppTimeout OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the suppTimeout constant
|
|
currently in use by the Backend Authentication state
|
|
machine."
|
|
DEFVAL { 30 }
|
|
::= { fsDot1xAuthObjects 4 }
|
|
|
|
fsDot1xAuthObjectsServerTimeout OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the serverTimeout constant
|
|
currently in use by the Backend Authentication state
|
|
machine."
|
|
DEFVAL { 30 }
|
|
::= { fsDot1xAuthObjects 5 }
|
|
|
|
fsDot1xAuthObjectsMaxReq OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value of the maxReq constant currently in use by
|
|
the Backend Authentication state machine."
|
|
DEFVAL { 2 }
|
|
::= { fsDot1xAuthObjects 6 }
|
|
|
|
fsDot1xAuthObjectsReAuthPeriod OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value, in seconds, of the reAuthPeriod constant
|
|
currently in use by the Reauthentication Timer state
|
|
machine."
|
|
DEFVAL { 3600 }
|
|
::= { fsDot1xAuthObjects 7 }
|
|
|
|
fsDot1xAuthObjectsMaxReauth OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value of the reAuthMax constant currently in use by
|
|
the Authenticator PAE state machine."
|
|
DEFVAL { 2 }
|
|
::= { fsDot1xAuthObjects 8 }
|
|
|
|
fsDot1xAuthObjectsReAuthEnable OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The enable(1)/disable(2) control used by the Reauthentication
|
|
Timer state machine."
|
|
DEFVAL { 2 }
|
|
::= { fsDot1xAuthObjects 9 }
|
|
|
|
fsDot1xAuthObjectsConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSDot1xAuthConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A table that contains the configuration objects for the
|
|
Authenticator PAE associated with each MAC address.
|
|
An entry appears in this table for each MAC address that
|
|
may authenticate access to itself."
|
|
::= { fsDot1xAuthObjects 10 }
|
|
|
|
fsDot1xAuthObjectsConfigEntry OBJECT-TYPE
|
|
SYNTAX FSDot1xAuthConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The configuration information for an Authenticator
|
|
PAE."
|
|
INDEX { fsDot1xAuthObjectsConfigFdbId,fsDot1xAuthObjectsConfigAddr }
|
|
::= { fsDot1xAuthObjectsConfigTable 1 }
|
|
|
|
FSDot1xAuthConfigEntry ::=
|
|
SEQUENCE {
|
|
fsDot1xAuthObjectsConfigFdbId
|
|
Unsigned32,
|
|
fsDot1xAuthObjectsConfigAddr
|
|
MacAddress,
|
|
fsDot1xAuthObjectsPaeState
|
|
INTEGER,
|
|
fsDot1xAuthObjectsBackendAuthState
|
|
INTEGER,
|
|
fsDot1xAuthObjectsAuthControlledPortStatus
|
|
INTEGER,
|
|
fsDot1xAuthObjectsKeyTxEnabled
|
|
TruthValue,
|
|
fsDot1xAuthObjectsIfIndex
|
|
IfIndex
|
|
}
|
|
fsDot1xAuthObjectsConfigFdbId OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The VID of vlan which the address blongs to."
|
|
::= { fsDot1xAuthObjectsConfigEntry 1 }
|
|
|
|
fsDot1xAuthObjectsConfigAddr OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The MAC address associated with this configurations."
|
|
::= { fsDot1xAuthObjectsConfigEntry 2 }
|
|
|
|
fsDot1xAuthObjectsPaeState OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
initialize(1),
|
|
disconnected(2),
|
|
connecting(3),
|
|
authenticating(4),
|
|
authenticated(5),
|
|
aborting(6),
|
|
held(7),
|
|
forceAuth(8),
|
|
forceUnauth(9)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The current value of the Authenticator PAE state
|
|
machine."
|
|
::= { fsDot1xAuthObjectsConfigEntry 3 }
|
|
|
|
fsDot1xAuthObjectsBackendAuthState OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
request(1),
|
|
response(2),
|
|
success(3),
|
|
fail(4),
|
|
timeout(5),
|
|
idle(6),
|
|
initialize(7)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The current state of the Backend Authentication
|
|
state machine."
|
|
::= { fsDot1xAuthObjectsConfigEntry 4 }
|
|
|
|
fsDot1xAuthObjectsAuthControlledPortStatus OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
authorized(1),
|
|
unauthorized(2)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The current value of the controlled Port
|
|
status parameter for the Port."
|
|
::= { fsDot1xAuthObjectsConfigEntry 5 }
|
|
|
|
fsDot1xAuthObjectsKeyTxEnabled OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The value of the keyTransmissionEnabled constant
|
|
currently in use by the Authenticator PAE state
|
|
machine."
|
|
::= { fsDot1xAuthObjectsConfigEntry 6 }
|
|
|
|
fsDot1xAuthObjectsIfIndex OBJECT-TYPE
|
|
SYNTAX IfIndex
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The interface index associated with this configurations"
|
|
::= { fsDot1xAuthObjectsConfigEntry 7 }
|
|
|
|
|
|
fsDot1xAuthObjectsStatsTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSDot1xAuthStatsEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A table that contains the statistics objects for the
|
|
Authenticator PAE associated with each MAC address.
|
|
An entry appears in this table for each MAC address
|
|
that may authenticate access to itself."
|
|
::= { fsDot1xAuthObjects 11 }
|
|
|
|
fsDot1xAuthStatsEntry OBJECT-TYPE
|
|
SYNTAX FSDot1xAuthStatsEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The statistics information for an Authenticator PAE."
|
|
INDEX { fsDot1xAuthObjectsStatsFdbId,fsDot1xAuthObjectsStatsAddr }
|
|
::= { fsDot1xAuthObjectsStatsTable 1 }
|
|
|
|
FSDot1xAuthStatsEntry ::=
|
|
SEQUENCE {
|
|
fsDot1xAuthObjectsStatsFdbId
|
|
Unsigned32,
|
|
fsDot1xAuthObjectsStatsAddr
|
|
MacAddress,
|
|
fsDot1xAuthObjectsEapolFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolFramesTx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolFSFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolLogoffFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolRespIdFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolRespFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolReqIdFramesTx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapolReqFramesTx
|
|
Counter32,
|
|
fsDot1xAuthObjectsInvalidEapolFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsEapLengthErrorFramesRx
|
|
Counter32,
|
|
fsDot1xAuthObjectsLastEapolFrameVersion
|
|
Unsigned32,
|
|
fsDot1xAuthObjectsLastEapolFrameSource
|
|
MacAddress
|
|
}
|
|
fsDot1xAuthObjectsStatsFdbId OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The VID of vlan which the address blongs to."
|
|
::= { fsDot1xAuthStatsEntry 1 }
|
|
|
|
fsDot1xAuthObjectsStatsAddr OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The MAC address associated with this states."
|
|
::= { fsDot1xAuthStatsEntry 2 }
|
|
|
|
fsDot1xAuthObjectsEapolFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of valid EAPOL frames of any type
|
|
that have been received by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 3 }
|
|
|
|
fsDot1xAuthObjectsEapolFramesTx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL frames of any type
|
|
that have been transmitted by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 4 }
|
|
|
|
fsDot1xAuthObjectsEapolFSFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL FS frames that have
|
|
been received by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 5 }
|
|
|
|
fsDot1xAuthObjectsEapolLogoffFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL Logoff frames that have
|
|
been received by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 6 }
|
|
|
|
fsDot1xAuthObjectsEapolRespIdFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAP Resp/Id frames that have
|
|
been received by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 7 }
|
|
|
|
fsDot1xAuthObjectsEapolRespFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of valid EAP Response frames
|
|
(other than Resp/Id frames) that have been
|
|
received by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 8 }
|
|
|
|
fsDot1xAuthObjectsEapolReqIdFramesTx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAP Req/Id frames that have been
|
|
transmitted by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 9 }
|
|
|
|
fsDot1xAuthObjectsEapolReqFramesTx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAP Request frames
|
|
(other than Rq/Id frames) that have been
|
|
transmitted by this Authenticator."
|
|
::= { fsDot1xAuthStatsEntry 10 }
|
|
|
|
fsDot1xAuthObjectsInvalidEapolFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL frames that have been
|
|
received by this Authenticator in which the
|
|
frame type is not recognized."
|
|
::= { fsDot1xAuthStatsEntry 11 }
|
|
|
|
fsDot1xAuthObjectsEapLengthErrorFramesRx OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of EAPOL frames that have been received
|
|
by this Authenticator in which the Packet Body
|
|
Length field is invalid."
|
|
::= { fsDot1xAuthStatsEntry 12 }
|
|
|
|
fsDot1xAuthObjectsLastEapolFrameVersion OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The protocol version number carried in the
|
|
most recently received EAPOL frame."
|
|
::= { fsDot1xAuthStatsEntry 13 }
|
|
|
|
fsDot1xAuthObjectsLastEapolFrameSource OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The source MAC address carried in the
|
|
most recently received EAPOL frame."
|
|
::= { fsDot1xAuthStatsEntry 14 }
|
|
|
|
fsDot1xCurrentUserNumber OBJECT-TYPE
|
|
SYNTAX Counter
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Numbers of users who attached to the system ,regardless of their state."
|
|
::= { fsDot1xAuthObjects 12 }
|
|
|
|
fsDot1xCurrentAuthenticatedUserNumber OBJECT-TYPE
|
|
SYNTAX Counter
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Numbers of user who attached to the system and their current state is
|
|
authorized"
|
|
::= { fsDot1xAuthObjects 13 }
|
|
|
|
fsDot1xAccountStatus OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The enable(1)/disable(2) control used by the
|
|
accounting function."
|
|
DEFVAL { 2 }
|
|
::= { fsDot1xAuthObjects 14 }
|
|
|
|
fsAuthIfTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAuthIfEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of the authenticated status of interface."
|
|
::= { fsDot1xAuthObjects 15 }
|
|
|
|
fsAuthIfEntry OBJECT-TYPE
|
|
SYNTAX FSAuthIfEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The entry of MAC address which can be authenticated."
|
|
INDEX { fsAuthIf}
|
|
::= { fsAuthIfTable 1 }
|
|
|
|
FSAuthIfEntry ::=
|
|
SEQUENCE {
|
|
fsAuthIf
|
|
IfIndex,
|
|
fsAuthIfStatus
|
|
EnabledStatus
|
|
}
|
|
fsAuthIf OBJECT-TYPE
|
|
SYNTAX IfIndex
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The port number of the port/trunk to which frames received from a
|
|
specific port/trunk and destined for a specific MAC address."
|
|
::= { fsAuthIfEntry 1 }
|
|
|
|
fsAuthIfStatus OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The authentication status of a port, can be opened by setting its
|
|
value to Enabled(1), or closed by setting its value to Disabled(2)."
|
|
DEFVAL { 2 }
|
|
::= { fsAuthIfEntry 2 }
|
|
|
|
fsAuthenticationMode OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
eap(1),
|
|
chap(2),
|
|
pap(3)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Mode used for authentication"
|
|
::= { fsDot1xAuthObjects 16 }
|
|
|
|
fsDot1xAccountUpdateStatus OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Account Update Status"
|
|
::= { fsDot1xAuthObjects 17 }
|
|
|
|
fsDot1xAcctInterimInterval OBJECT-TYPE
|
|
SYNTAX Unsigned32 (60..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Account Interim Interval"
|
|
::= { fsDot1xAuthObjects 18 }
|
|
|
|
fsDot1xEapolTagEnabled OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Eapol Tag Enabled"
|
|
::= { fsDot1xAuthObjects 19 }
|
|
|
|
fsDot1xIfUserMaxTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSDot1xIfUserMaxEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of the max dot1x user number on authenticated interface."
|
|
::= { fsDot1xAuthObjects 20 }
|
|
|
|
fsDot1xIfUserMaxEntry OBJECT-TYPE
|
|
SYNTAX FSDot1xIfUserMaxEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The entry of max dot1x user number on authenticated interface."
|
|
INDEX { fsDot1xIfUserMaxIndex}
|
|
::= { fsDot1xIfUserMaxTable 1 }
|
|
|
|
FSDot1xIfUserMaxEntry ::=
|
|
SEQUENCE {
|
|
fsDot1xIfUserMaxIndex
|
|
IfIndex,
|
|
fsDot1xIfUserMaxNum
|
|
Unsigned32
|
|
}
|
|
fsDot1xIfUserMaxIndex OBJECT-TYPE
|
|
SYNTAX IfIndex
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The interface index which dot1x authentication is enabled."
|
|
::= { fsDot1xIfUserMaxEntry 1 }
|
|
|
|
fsDot1xIfUserMaxNum OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4000)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The max dot1x user num on the interface, this is valid only
|
|
when dot1x authentication is enable on that interface.
|
|
Number 0 indicates no user number limits enabled on the interface."
|
|
::= { fsDot1xIfUserMaxEntry 2 }
|
|
|
|
fsDot1xPseudoSrcmac OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Enable(1)/disable(2) use pseudo mac as the source mac of 802.1x
|
|
authentication frame."
|
|
DEFVAL { enabled }
|
|
::= { fsDot1xAuthObjects 21 }
|
|
|
|
fsDot1xUserMIB OBJECT IDENTIFIER ::= { fsDot1xAuthObjects 22 }
|
|
|
|
fsDot1xUserTrapsObjects OBJECT IDENTIFIER ::= { fsDot1xUserMIB 1 }
|
|
fsDot1xUserTraps OBJECT IDENTIFIER ::= { fsDot1xUserMIB 2 }
|
|
|
|
fsDot1xUserMac OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1X user's MAC address."
|
|
::= { fsDot1xUserTrapsObjects 1 }
|
|
|
|
fsDot1xUserName OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1X user's name"
|
|
::= { fsDot1xUserTrapsObjects 2 }
|
|
|
|
fsDot1xUserIp OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1X user's IPv4 address."
|
|
::= { fsDot1xUserTrapsObjects 3 }
|
|
|
|
fsDot1xUserIpv6 OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1x user's IPv6 address."
|
|
::= { fsDot1xUserTrapsObjects 4 }
|
|
|
|
fsDot1xUserWlanId OBJECT-TYPE
|
|
SYNTAX INTEGER (1..4095)
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The wlan id that 802.1X user associated with."
|
|
::= { fsDot1xUserTrapsObjects 5 }
|
|
|
|
fsDot1xUserVlanId OBJECT-TYPE
|
|
SYNTAX INTEGER (1..4094)
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The vlan id that 801.1X user belongs to."
|
|
::= { fsDot1xUserTrapsObjects 6 }
|
|
|
|
fsDot1xUserSsid OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The SSID that 802.1X user associated with."
|
|
::= { fsDot1xUserTrapsObjects 7 }
|
|
|
|
fsDot1xUserApMac OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The MAC address of the AP that 802.1X user associated with."
|
|
::= { fsDot1xUserTrapsObjects 8 }
|
|
|
|
fsDot1xUserTerminalType OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1X user's terminal type."
|
|
::= { fsDot1xUserTrapsObjects 9 }
|
|
|
|
fsDot1xUserOperType OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
online(1),
|
|
offline(2),
|
|
authenfail(3)
|
|
}
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Operation type of 802.1X user's trap."
|
|
::= { fsDot1xUserTrapsObjects 10 }
|
|
|
|
fsDot1xUserTerminateCause OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Terminate cause of 802.1X user."
|
|
::= { fsDot1xUserTrapsObjects 11 }
|
|
|
|
fsDot1xUserReplyMessage OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Message of authentication failure of a 802.1X user."
|
|
::= { fsDot1xUserTrapsObjects 12 }
|
|
|
|
fsDot1xUserIfIndex OBJECT-TYPE
|
|
SYNTAX INTEGER (1..4095)
|
|
MAX-ACCESS accessible-for-notify
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The interface id that 802.1X user belongs to."
|
|
::= { fsDot1xUserTrapsObjects 13 }
|
|
|
|
fsDot1xUserMgmtTrap NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
fsDot1xUserMac,
|
|
fsDot1xUserName,
|
|
fsDot1xUserIp,
|
|
fsDot1xUserIpv6,
|
|
fsDot1xUserWlanId,
|
|
fsDot1xUserVlanId,
|
|
fsDot1xUserSsid,
|
|
fsDot1xUserApMac,
|
|
fsDot1xUserTerminalType,
|
|
fsDot1xUserOperType,
|
|
fsDot1xUserTerminateCause,
|
|
fsDot1xUserReplyMessage,
|
|
fsDot1xUserIfIndex
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1X wireless user online/offline trap."
|
|
::= { fsDot1xUserTraps 1 }
|
|
|
|
fsDot1xWiredUserTrap NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
fsDot1xUserMac,
|
|
fsDot1xUserName,
|
|
fsDot1xUserIfIndex,
|
|
fsDot1xUserVlanId,
|
|
fsDot1xUserIp,
|
|
fsDot1xUserIpv6,
|
|
fsDot1xUserOperType,
|
|
fsDot1xUserTerminateCause
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"802.1X wired user online/offline/authentication trap."
|
|
::= { fsDot1xUserTraps 2 }
|
|
|
|
--**********************************************************************
|
|
-- about dot1x online user table info
|
|
--**********************************************************************
|
|
fsDot1xOnlineUserTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSDot1xOnlineUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Detail information of dot1x online user."
|
|
::= { fsDot1xUserMIB 3 }
|
|
|
|
fsDot1xOnlineUserEntry OBJECT-TYPE
|
|
SYNTAX FSDot1xOnlineUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The entry of fsDot1xOnlineUserTable."
|
|
INDEX { fsDot1xOnlineUserID }
|
|
::= { fsDot1xOnlineUserTable 1 }
|
|
|
|
FSDot1xOnlineUserEntry ::=
|
|
SEQUENCE {
|
|
fsDot1xOnlineUserID INTEGER,
|
|
fsDot1xOnlineUserName DisplayString,
|
|
fsDot1xOnlineUserMacAddr MacAddress,
|
|
fsDot1xOnlineUserIfIndex INTEGER,
|
|
fsDot1xOnlineUserVlanId INTEGER,
|
|
fsDot1xOnlineUserIp IpAddress,
|
|
fsDot1xOnlineUserIpv6 InetAddress
|
|
}
|
|
|
|
fsDot1xOnlineUserID OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The ID of Dot1xOnlineuser that is uniqueness."
|
|
::= {fsDot1xOnlineUserEntry 1 }
|
|
|
|
fsDot1xOnlineUserName OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Name of dot1x online user."
|
|
::= {fsDot1xOnlineUserEntry 2}
|
|
|
|
fsDot1xOnlineUserMacAddr OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Mac address of dot1x online user."
|
|
::= {fsDot1xOnlineUserEntry 3}
|
|
|
|
fsDot1xOnlineUserIfIndex OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Interface index of dot1x online user."
|
|
::= {fsDot1xOnlineUserEntry 4}
|
|
|
|
fsDot1xOnlineUserVlanId OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Vlan id of dot1x online user."
|
|
::= {fsDot1xOnlineUserEntry 5}
|
|
|
|
fsDot1xOnlineUserIp OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Ipv4 address of dot1x online user."
|
|
::= {fsDot1xOnlineUserEntry 6}
|
|
|
|
fsDot1xOnlineUserIpv6 OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Ipv6 address of dot1x online user."
|
|
::= {fsDot1xOnlineUserEntry 7}
|
|
|
|
fsDot1xAbnormalOfflineUserCount OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of offline users with abnormal terminate-cause"
|
|
::= { fsDot1xAuthObjects 23 }
|
|
|
|
fsDot1xTotalAuthUserCount OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The totaol number of users who send authentication request"
|
|
::= { fsDot1xAuthObjects 24 }
|
|
|
|
fsDot1xAuthSuccUserCount OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of users who pass authentication"
|
|
::= { fsDot1xAuthObjects 25 }
|
|
|
|
fsDot1xAuthFailUserCount OBJECT-TYPE
|
|
SYNTAX Counter64
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of users who authenticate fail"
|
|
::= { fsDot1xAuthObjects 26 }
|
|
|
|
--
|
|
-- fsAAAServer Group.
|
|
--
|
|
|
|
-- ::= { fsAAAServerObjects 1 } this OID is obsolete
|
|
|
|
fsAAAServerAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP port used for authentication in the global
|
|
configuration.
|
|
For RADIUS only, default value is 1812."
|
|
DEFVAL { 1812 }
|
|
::= { fsAAAServerObjects 2 }
|
|
|
|
fsAAAServerAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP port used for accounting service in the global
|
|
configuration.
|
|
For RADIUS only, default value is 1813."
|
|
DEFVAL { 1813 }
|
|
::= { fsAAAServerObjects 3 }
|
|
|
|
fsAAAServerRadiusKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with all RADIUS server.
|
|
Retrieving the value of this object via SNMP will
|
|
return an empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAAServerObjects 4 }
|
|
|
|
-- ::= { fsAAAServerObjects 5 } this OID is obsolete
|
|
|
|
-- ::= { fsAAAServerObjects 6 } this OID is obsolete
|
|
|
|
-- ::= { fsAAAServerObjects 7 } this OID is obsolete
|
|
|
|
fsAAAServerTacplusKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with all TACACS+ server.
|
|
Retrieving the value of this object via SNMP will return
|
|
an empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAAServerObjects 8 }
|
|
|
|
--
|
|
-- fsAAAServerConfigTable
|
|
--
|
|
fsAAAServerConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAAServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for each
|
|
AAA server, allows existing servers to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 9 }
|
|
|
|
fsAAAServerConfigEntry OBJECT-TYPE
|
|
SYNTAX FSAAAServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA server configuration identified by its
|
|
protocol and its index."
|
|
INDEX { fsAAAServerConfigProtocol,
|
|
fsAAAServerConfigIndex }
|
|
::= { fsAAAServerConfigTable 1}
|
|
|
|
FSAAAServerConfigEntry ::=
|
|
SEQUENCE {
|
|
fsAAAServerConfigProtocol INTEGER,
|
|
fsAAAServerConfigIndex Unsigned32,
|
|
fsAAAServerConfigAddressType InetAddressType,
|
|
fsAAAServerConfigAddress InetAddress,
|
|
fsAAAServerConfigAuthPort INTEGER,
|
|
fsAAAServerConfigAcctPort INTEGER,
|
|
fsAAAServerConfigKeyStr DisplayString,
|
|
fsAAAServerConfigRowStatus RowStatus
|
|
}
|
|
|
|
fsAAAServerConfigProtocol OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
radius(1), -- RADIUS
|
|
tacplus(2) -- TACACS+
|
|
}
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the protocol used by the managed
|
|
device with the AAA server corresponding to this entry
|
|
in the table."
|
|
::= { fsAAAServerConfigEntry 1 }
|
|
|
|
fsAAAServerConfigIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A number uniquely identifying each server.
|
|
If the fsAAAServerConfigIndex value for row creation is
|
|
already in use by an existing entry, snmp set to the
|
|
fsAAAServerConfigIndex value will fail.
|
|
Upon reload, casIndex values may be changed."
|
|
::= { fsAAAServerConfigEntry 2 }
|
|
|
|
fsAAAServerConfigAddressType OBJECT-TYPE
|
|
SYNTAX InetAddressType
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of address format used for the
|
|
fsAAAServerConfigAddress object."
|
|
::= { fsAAAServerConfigEntry 3 }
|
|
|
|
fsAAAServerConfigAddress OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the server."
|
|
::= { fsAAAServerConfigEntry 4 }
|
|
|
|
fsAAAServerConfigAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for authentication in the server.
|
|
For RADIUS, default value is 1812.
|
|
For TACACS+, default value is 49."
|
|
::= { fsAAAServerConfigEntry 5 }
|
|
|
|
fsAAAServerConfigAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for accounting service in the server.
|
|
For RADIUS, default value is 1813.
|
|
For TACACS+, the value of fsAAAServerConfigAcctPort is
|
|
ignored, fsAAAServerConfigAuthPort will be used instead."
|
|
::= { fsAAAServerConfigEntry 6 }
|
|
|
|
fsAAAServerConfigKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with this server.
|
|
Retrieving the value of this object via SNMP will return an
|
|
empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAAServerConfigEntry 7 }
|
|
|
|
fsAAAServerConfigRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAAServerConfigEntry 8 }
|
|
|
|
--
|
|
-- fsAuthAddress Group.
|
|
--
|
|
fsAuthAddrTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAuthAddrEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of MAC address which can be authenticated."
|
|
::= { fsAuthUserObjects 1 }
|
|
|
|
fsAuthAddrEntry OBJECT-TYPE
|
|
SYNTAX FSAuthAddrEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The entry of MAC address which can be authenticated."
|
|
INDEX { fsAuthPort,fsAuthMacAddress}
|
|
::= { fsAuthAddrTable 1 }
|
|
|
|
FSAuthAddrEntry ::=
|
|
SEQUENCE {
|
|
fsAuthPort
|
|
IfIndex,
|
|
fsAuthMacAddress
|
|
MacAddress,
|
|
fsAuthAddrStatus
|
|
INTEGER
|
|
}
|
|
fsAuthPort OBJECT-TYPE
|
|
SYNTAX IfIndex
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The port number of the port/trunk to which frames received from a
|
|
specific port/trunk and destined for a specific MAC address."
|
|
::= { fsAuthAddrEntry 1 }
|
|
|
|
fsAuthMacAddress OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The MAC address which can be authenticated."
|
|
::= { fsAuthAddrEntry 2 }
|
|
|
|
fsAuthAddrStatus OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
valid(1),
|
|
invalid(2)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"valid(1) - this entry is currently in use .
|
|
invalid(2) - writing this value to the object
|
|
removes the corresponding entry."
|
|
::= { fsAuthAddrEntry 3 }
|
|
|
|
|
|
--
|
|
-- fs authentication user information
|
|
--
|
|
fsAuthUserTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAuthUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of authentication User Info."
|
|
::= { fsAuthUserObjects 2 }
|
|
|
|
fsAuthUserEntry OBJECT-TYPE
|
|
SYNTAX FSAuthUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The entry of authentication User Info table."
|
|
INDEX { fsAuthUserFdbId,fsAuthUserMacAddress}
|
|
::= { fsAuthUserTable 1 }
|
|
|
|
FSAuthUserEntry ::=
|
|
SEQUENCE {
|
|
fsAuthUserFdbId Unsigned32,
|
|
fsAuthUserMacAddress MacAddress,
|
|
fsAuthUserName DisplayString,
|
|
fsAuthUserSessionId DisplayString,
|
|
fsAuthUserIpAddr IpAddress,
|
|
fsAuthUserPort INTEGER,
|
|
fsAuthUserStatus ConfigStatus
|
|
}
|
|
|
|
fsAuthUserFdbId OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The VID of vlan which the address blongs to."
|
|
::= { fsAuthUserEntry 1 }
|
|
|
|
fsAuthUserMacAddress OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The MAC Address of authentication User ."
|
|
::= { fsAuthUserEntry 2 }
|
|
|
|
fsAuthUserName OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Name of authentication User."
|
|
::= { fsAuthUserEntry 3 }
|
|
|
|
fsAuthUserSessionId OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The Session Id of authentication User ."
|
|
::= { fsAuthUserEntry 4 }
|
|
|
|
fsAuthUserIpAddr OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The IP Address of authentication User ."
|
|
::= { fsAuthUserEntry 5 }
|
|
|
|
fsAuthUserPort OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The interface of authentication User ."
|
|
::= { fsAuthUserEntry 6 }
|
|
|
|
fsAuthUserStatus OBJECT-TYPE
|
|
SYNTAX ConfigStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Setting this object to 'invalid' will close a authenticated user,
|
|
set its value to valid will cause no action of agent,
|
|
when query always return value valid."
|
|
::= { fsAuthUserEntry 7 }
|
|
|
|
|
|
--
|
|
-- fs vpn authentication user information
|
|
--
|
|
fsAuthUserForVPNDel OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..255))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"VPN user's name. Setting this object will delete a authenticated user and this user is unauthenticated.
|
|
The set string is the username.
|
|
|
|
Reading this object always return null string."
|
|
::= { fsAuthUserObjects 3 }
|
|
|
|
--
|
|
-- fs online user information
|
|
--
|
|
fsOnlineUserTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSOnlineUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of online User Info."
|
|
::= { fsAuthUserObjects 4 }
|
|
|
|
fsOnlineUserEntry OBJECT-TYPE
|
|
SYNTAX FSOnlineUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The entry of online User Info table."
|
|
INDEX {fsOnlineUserSessionId}
|
|
::= { fsOnlineUserTable 1 }
|
|
|
|
FSOnlineUserEntry ::=
|
|
SEQUENCE {
|
|
fsOnlineUserSessionId DisplayString,
|
|
fsOnlineUserVid Unsigned32,
|
|
fsOnlineUserMacAddress MacAddress,
|
|
fsOnlineUserPort INTEGER,
|
|
fsOnlineUserName DisplayString,
|
|
fsOnlineUserIpAddr IpAddress,
|
|
fsOnlineUserStatus ConfigStatus
|
|
}
|
|
|
|
fsOnlineUserSessionId OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The Session Id of online User ."
|
|
::= { fsOnlineUserEntry 1 }
|
|
|
|
fsOnlineUserVid OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The VID of vlan which the address blongs to."
|
|
::= { fsOnlineUserEntry 2 }
|
|
|
|
fsOnlineUserMacAddress OBJECT-TYPE
|
|
SYNTAX MacAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The MAC Address of online User ."
|
|
::= { fsOnlineUserEntry 3 }
|
|
|
|
fsOnlineUserPort OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The interface of online User ."
|
|
::= { fsOnlineUserEntry 4 }
|
|
|
|
fsOnlineUserName OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Name of online User."
|
|
::= { fsOnlineUserEntry 5 }
|
|
|
|
fsOnlineUserIpAddr OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
" The IP Address of online User ."
|
|
::= { fsOnlineUserEntry 6 }
|
|
|
|
fsOnlineUserStatus OBJECT-TYPE
|
|
SYNTAX ConfigStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Setting this object to 'invalid' will close a authenticated user,
|
|
set its value to valid will cause no action of agent,
|
|
when query always return value valid."
|
|
::= { fsOnlineUserEntry 7 }
|
|
|
|
--
|
|
-- fs aaa version
|
|
--
|
|
fsAaaVersion OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"FS Authentication/Accounting/Authorization(AAA) Version"
|
|
::= { fsAuthUserObjects 5 }
|
|
|
|
-- authorization mode objects
|
|
|
|
fsIpAuthorizationMode OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
disable(1),
|
|
dhcpServer(2),
|
|
radiusServer(3),
|
|
supplicant(4),
|
|
mixed(5)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"disable(1) - don't limit ip address of user
|
|
dhcpServer(2) - limit ip address of user, only ip address assigned by the dhcp
|
|
server is legit.
|
|
radiusServer(3) - limit ip address of user, only ip address assigned by the radius
|
|
server is legit.
|
|
supplicant(4) - mac+ip+port indicates different users (get the IP adress through supplicant)
|
|
mixed(5) - limit ip address of user, ip address may be from supplicant, radiusServer or dhcpServer."
|
|
::= { fsAuthModeObjects 1 }
|
|
---
|
|
---Client probe
|
|
---
|
|
fsClientProbeEnabledStatus OBJECT-TYPE
|
|
SYNTAX EnabledStatus
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of client probe function."
|
|
::= { fsClientProbeObjects 1 }
|
|
|
|
fsClientProbeHelloInterval OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The interval that client send hello packets."
|
|
::= { fsClientProbeObjects 2 }
|
|
|
|
fsClientProbeAliveInteval OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"When switch does not receive any legal hello packets from client
|
|
in this interval,it will send RADIUS-Account-Stop to RADIUS server
|
|
to stop this connection.The value of the objects must be more than
|
|
fsClientProbeHelloInterval"
|
|
::= { fsClientProbeObjects 3 }
|
|
|
|
|
|
|
|
fsAAAConfigObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 6 }
|
|
fsAuthenConfigObjects OBJECT IDENTIFIER ::= { fsAAAConfigObjects 1 }
|
|
fsAuthorConfigObjects OBJECT IDENTIFIER ::= { fsAAAConfigObjects 2 }
|
|
fsAcctConfigObjects OBJECT IDENTIFIER ::= { fsAAAConfigObjects 3 }
|
|
|
|
--
|
|
-- Authentication configurations parameters.
|
|
--
|
|
--
|
|
-- fsAuthenMethodListTable
|
|
--
|
|
fsAuthenMethodListTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAuthenMethodListEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for each authentication
|
|
method-list, allows existing method-lists to be removed and new
|
|
ones to be created."
|
|
::= { fsAuthenConfigObjects 1 }
|
|
|
|
fsAuthenMethodListEntry OBJECT-TYPE
|
|
SYNTAX FSAuthenMethodListEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of authentication method-list configuration identified
|
|
by its type and its name."
|
|
INDEX { fsAuthenMethodListType,
|
|
fsAuthenMethodListName }
|
|
::= { fsAuthenMethodListTable 1}
|
|
|
|
FSAuthenMethodListEntry ::=
|
|
SEQUENCE {
|
|
fsAuthenMethodListType INTEGER,
|
|
fsAuthenMethodListName DisplayString,
|
|
fsAuthenMethodListString DisplayString,
|
|
fsAuthenMethodListRowStatus RowStatus
|
|
}
|
|
|
|
fsAuthenMethodListType OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
login(1), -- for logins.
|
|
ppp(2), -- for ppp.
|
|
dot1x(3), -- for IEEE 802.1x.
|
|
enable(4), -- for enable.
|
|
web(5), -- for inter portal.
|
|
cmweb(6), -- for cmweb.
|
|
mt(7), -- for mt.
|
|
general(8) -- for general.
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the authentication method-list used by
|
|
the managed device with the AAA user corresponding to this entry
|
|
in the table."
|
|
::= { fsAuthenMethodListEntry 1 }
|
|
|
|
fsAuthenMethodListName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of authentication
|
|
method-list."
|
|
::= { fsAuthenMethodListEntry 2 }
|
|
|
|
fsAuthenMethodListString OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the corresponding
|
|
value of of authentication method-list.
|
|
ie: group radius group tacacs+ local none
|
|
"
|
|
::= { fsAuthenMethodListEntry 3 }
|
|
|
|
fsAuthenMethodListRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAuthenMethodListEntry 4 }
|
|
|
|
--
|
|
-- Authorization configurations parameters.
|
|
--
|
|
--
|
|
-- fsAuthorMethodListTable
|
|
--
|
|
fsAuthorMethodListTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAuthorMethodListEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for each authorization
|
|
method-list, allows existing method-lists to be removed and new
|
|
ones to be created."
|
|
::= { fsAuthorConfigObjects 1 }
|
|
|
|
fsAuthorMethodListEntry OBJECT-TYPE
|
|
SYNTAX FSAuthorMethodListEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of authorization method-list configuration identified
|
|
by its type and its name."
|
|
INDEX { fsAuthorMethodListType,
|
|
fsAuthorMethodListName,
|
|
fsAuthorMethodListCmdLevel }
|
|
::= { fsAuthorMethodListTable 1}
|
|
|
|
FSAuthorMethodListEntry ::=
|
|
SEQUENCE {
|
|
fsAuthorMethodListType INTEGER,
|
|
fsAuthorMethodListName DisplayString,
|
|
fsAuthorMethodListCmdLevel INTEGER,
|
|
fsAuthorMethodListString DisplayString,
|
|
fsAuthorMethodListRowStatus RowStatus
|
|
}
|
|
|
|
fsAuthorMethodListType OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
exec(1), -- for starting an exec (shell).
|
|
command(2), -- for exec (shell) commands.
|
|
network(3) -- for network services.
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the authorization method-list used by
|
|
the managed device with the AAA user corresponding to this entry
|
|
in the table."
|
|
::= { fsAuthorMethodListEntry 1 }
|
|
|
|
fsAuthorMethodListName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of authorization
|
|
method-list."
|
|
::= { fsAuthorMethodListEntry 2 }
|
|
|
|
fsAuthorMethodListCmdLevel OBJECT-TYPE
|
|
SYNTAX INTEGER (0..15)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the command level when the value of
|
|
fsAuthorMethodListType is command(2). Otherwise, the value
|
|
must be zero."
|
|
::= { fsAuthorMethodListEntry 3 }
|
|
|
|
fsAuthorMethodListString OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the corresponding
|
|
value of of authentication method-list.
|
|
ie: group radius group tacacs+ none
|
|
"
|
|
::= { fsAuthorMethodListEntry 4 }
|
|
|
|
fsAuthorMethodListRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAuthorMethodListEntry 5 }
|
|
|
|
--
|
|
-- Accounting configurations parameters.
|
|
--
|
|
--
|
|
-- fsAuthorMethodListTable
|
|
--
|
|
fsAcctMethodListTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAcctMethodListEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for each accounting
|
|
method-list, allows existing method-lists to be removed and new
|
|
ones to be created."
|
|
::= { fsAcctConfigObjects 1 }
|
|
|
|
fsAcctMethodListEntry OBJECT-TYPE
|
|
SYNTAX FSAcctMethodListEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of accounting method-list configuration identified
|
|
by its type and its name."
|
|
INDEX { fsAcctMethodListType,
|
|
fsAcctMethodListName,
|
|
fsAcctMethodListCmdLevel }
|
|
::= { fsAcctMethodListTable 1}
|
|
|
|
FSAcctMethodListEntry ::=
|
|
SEQUENCE {
|
|
fsAcctMethodListType INTEGER,
|
|
fsAcctMethodListName DisplayString,
|
|
fsAcctMethodListMode INTEGER,
|
|
fsAcctMethodListCmdLevel INTEGER,
|
|
fsAcctMethodListString DisplayString,
|
|
fsAcctMethodListRowStatus RowStatus
|
|
}
|
|
|
|
fsAcctMethodListType OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
exec(1), -- for starting an exec (shell).
|
|
command(2), -- for exec (shell) commands.
|
|
network(3) -- for network services.
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the accounting method-list used by
|
|
the managed device with the AAA user corresponding to this entry
|
|
in the table."
|
|
::= { fsAcctMethodListEntry 1 }
|
|
|
|
fsAcctMethodListName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of accounting
|
|
method-list."
|
|
::= { fsAcctMethodListEntry 2 }
|
|
|
|
fsAcctMethodListMode OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
start-stop(1), -- record start and stop without waiting.
|
|
stop-only(2) -- record stop when service terminates.
|
|
}
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Set record start and stop without waiting or record stop when
|
|
service terminates."
|
|
::= { fsAcctMethodListEntry 3 }
|
|
|
|
fsAcctMethodListCmdLevel OBJECT-TYPE
|
|
SYNTAX INTEGER (0..15)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the command level when the value of
|
|
fsAcctMethodListType is command(2). Otherwise, the value
|
|
must be zero."
|
|
::= { fsAcctMethodListEntry 4 }
|
|
|
|
fsAcctMethodListString OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the corresponding
|
|
value of of authentication method-list.
|
|
ie: group radius group tacacs+ none
|
|
"
|
|
::= { fsAcctMethodListEntry 5 }
|
|
|
|
fsAcctMethodListRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAcctMethodListEntry 6 }
|
|
|
|
|
|
--
|
|
-- fsAAAServerGroupTable
|
|
--
|
|
fsAAARadiusGroupTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAARadiusGroupEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current group configurations for each
|
|
RADIUS server group, allows existing groups to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 10 }
|
|
|
|
fsAAARadiusGroupEntry OBJECT-TYPE
|
|
SYNTAX FSAAARadiusGroupEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of RADIUS server group configuration identified
|
|
by its protocol and its name."
|
|
INDEX { fsAAARadiusGroupName }
|
|
::= { fsAAARadiusGroupTable 1}
|
|
|
|
FSAAARadiusGroupEntry ::=
|
|
SEQUENCE {
|
|
fsAAARadiusGroupName DisplayString,
|
|
fsAAARadiusGroupVrf DisplayString,
|
|
fsAAARadiusGroupRowStatus RowStatus
|
|
}
|
|
|
|
fsAAARadiusGroupName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of RADIUS server
|
|
group."
|
|
::= { fsAAARadiusGroupEntry 1 }
|
|
|
|
fsAAARadiusGroupVrf OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..31))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The VPN Routing Forwarding to use with the servers."
|
|
DEFVAL { "" }
|
|
::= { fsAAARadiusGroupEntry 2 }
|
|
|
|
fsAAARadiusGroupRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAARadiusGroupEntry 3 }
|
|
|
|
--
|
|
-- fsAAARadiusGroupServerTable
|
|
--
|
|
fsAAARadiusGroupServerTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAARadiusGroupServerEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for each
|
|
AAA server, allows existing servers to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 11 }
|
|
|
|
fsAAARadiusGroupServerEntry OBJECT-TYPE
|
|
SYNTAX FSAAARadiusGroupServerEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA server configuration identified by its
|
|
protocol and its index."
|
|
INDEX { fsAAARadiusGroupName,
|
|
fsAAARadiusGroupServerIndex }
|
|
::= { fsAAARadiusGroupServerTable 1}
|
|
|
|
FSAAARadiusGroupServerEntry ::=
|
|
SEQUENCE {
|
|
fsAAARadiusGroupServerIndex Unsigned32,
|
|
fsAAARadiusGroupServerAddressType InetAddressType,
|
|
fsAAARadiusGroupServerAddress InetAddress,
|
|
fsAAARadiusGroupServerAuthPort INTEGER,
|
|
fsAAARadiusGroupServerAcctPort INTEGER,
|
|
fsAAARadiusGroupServerRowStatus RowStatus
|
|
}
|
|
|
|
fsAAARadiusGroupServerIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A number uniquely identifying each RADIUS server. If the
|
|
fsAAARadiusGroupServerIndex value for row creation is already
|
|
in use by an existing entry, snmp set to the
|
|
fsAAARadiusGroupServerIndex value will fail.
|
|
Upon reload, casIndex values may be changed."
|
|
::= { fsAAARadiusGroupServerEntry 1 }
|
|
|
|
fsAAARadiusGroupServerAddressType OBJECT-TYPE
|
|
SYNTAX InetAddressType
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of address format used for the
|
|
fsAAARadiusGroupServerAddress object."
|
|
::= { fsAAARadiusGroupServerEntry 2 }
|
|
|
|
fsAAARadiusGroupServerAddress OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the RADIUS server."
|
|
::= { fsAAARadiusGroupServerEntry 3 }
|
|
|
|
fsAAARadiusGroupServerAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP port used for authentication in the RADIUS server."
|
|
DEFVAL { 1812 }
|
|
::= { fsAAARadiusGroupServerEntry 4 }
|
|
|
|
fsAAARadiusGroupServerAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP port used for accounting service in the RADIUS server."
|
|
DEFVAL { 1813 }
|
|
::= { fsAAARadiusGroupServerEntry 5 }
|
|
|
|
fsAAARadiusGroupServerRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAARadiusGroupServerEntry 6 }
|
|
|
|
fsAAAServerTotalOnlineCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"All RADIUS Access-Accept packets received."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 12 }
|
|
|
|
fsAAAServerAbnormalOffline OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of offline users with abnormal terminate-cause."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 13 }
|
|
|
|
fsAAAServerRadiusAuthReqCount OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of radius authention request send from device."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 14 }
|
|
|
|
fsAAAServerRadiusAuthRespCount OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of radius authen response send from server."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 15 }
|
|
|
|
fsAAAServerRadiusAuthSuccessCount OBJECT-TYPE
|
|
SYNTAX Counter32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of radius authen success response send from server."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 16 }
|
|
|
|
fsAAAServerCurrOnlineUserCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of user online."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 17 }
|
|
|
|
--
|
|
-- fsAAAMasterAuthenServerConfigTable
|
|
--
|
|
fsAAAMasterAuthenServerConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAAMasterAuthenServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for
|
|
AAA Master authentication server, allows existing servers to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 18 }
|
|
|
|
fsAAAMasterAuthenServerConfigEntry OBJECT-TYPE
|
|
SYNTAX FSAAAMasterAuthenServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA Master authentication server configuration identified by its group name and its index."
|
|
INDEX { fsAAAMasterAuthenServerConfigGrpName,
|
|
fsAAAMasterAuthenServerConfigSrvIndex}
|
|
::= { fsAAAMasterAuthenServerConfigTable 1}
|
|
|
|
FSAAAMasterAuthenServerConfigEntry ::=
|
|
SEQUENCE {
|
|
fsAAAMasterAuthenServerConfigGrpName DisplayString,
|
|
fsAAAMasterAuthenServerConfigSrvIndex Unsigned32,
|
|
fsAAAMasterAuthenServerConfigAddress IpAddress,
|
|
fsAAAMasterAuthenServerConfigAuthPort INTEGER,
|
|
fsAAAMasterAuthenServerConfigAcctPort INTEGER,
|
|
fsAAAMasterAuthenServerConfigKeyStr DisplayString,
|
|
fsAAAMasterAuthenServerConfigRowStatus RowStatus
|
|
}
|
|
|
|
fsAAAMasterAuthenServerConfigGrpName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the group name it belong to."
|
|
::= { fsAAAMasterAuthenServerConfigEntry 1 }
|
|
|
|
fsAAAMasterAuthenServerConfigSrvIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A number uniquely identifying each server.
|
|
If the fsAAAMasterAuthenServerConfigSrvIndex value for row creation is
|
|
already in use by an existing entry, snmp set to the
|
|
fsAAAMasterAuthenServerConfigSrvIndex value will fail.
|
|
Upon reload, casIndex values may be changed."
|
|
::= { fsAAAMasterAuthenServerConfigEntry 2 }
|
|
|
|
fsAAAMasterAuthenServerConfigAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the server."
|
|
::= { fsAAAMasterAuthenServerConfigEntry 3 }
|
|
|
|
fsAAAMasterAuthenServerConfigAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for authentication in the server.
|
|
For RADIUS, default value is 1812."
|
|
::= { fsAAAMasterAuthenServerConfigEntry 4 }
|
|
|
|
fsAAAMasterAuthenServerConfigAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for accounting service in the server.
|
|
For RADIUS, default value is 1813."
|
|
::= { fsAAAMasterAuthenServerConfigEntry 5 }
|
|
|
|
fsAAAMasterAuthenServerConfigKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with this server.
|
|
Retrieving the value of this object via SNMP will return an
|
|
empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAAMasterAuthenServerConfigEntry 6 }
|
|
|
|
fsAAAMasterAuthenServerConfigRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAAMasterAuthenServerConfigEntry 7 }
|
|
|
|
--
|
|
-- fsAAABackAuthenServerConfigTable
|
|
--
|
|
fsAAABackAuthenServerConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAABackAuthenServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for
|
|
AAA Back Authentication server, allows existing servers to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 19 }
|
|
|
|
fsAAABackAuthenServerConfigEntry OBJECT-TYPE
|
|
SYNTAX FSAAABackAuthenServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA Back Authentication server configuration identified by its group name and its index."
|
|
INDEX { fsAAABackAuthenServerConfigGrpName,
|
|
fsAAABackAuthenServerConfigSrvIndex }
|
|
::= { fsAAABackAuthenServerConfigTable 1}
|
|
|
|
FSAAABackAuthenServerConfigEntry ::=
|
|
SEQUENCE {
|
|
fsAAABackAuthenServerConfigGrpName DisplayString,
|
|
fsAAABackAuthenServerConfigSrvIndex Unsigned32,
|
|
fsAAABackAuthenServerConfigAddress IpAddress,
|
|
fsAAABackAuthenServerConfigAuthPort INTEGER,
|
|
fsAAABackAuthenServerConfigAcctPort INTEGER,
|
|
fsAAABackAuthenServerConfigKeyStr DisplayString,
|
|
fsAAABackAuthenServerConfigRowStatus RowStatus
|
|
}
|
|
|
|
fsAAABackAuthenServerConfigGrpName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the group name the server belong to."
|
|
::= { fsAAABackAuthenServerConfigEntry 1 }
|
|
|
|
fsAAABackAuthenServerConfigSrvIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A number uniquely identifying each server.
|
|
If the fsAAABackAuthenServerConfigSrvIndex value for row creation is
|
|
already in use by an existing entry, snmp set to the
|
|
fsAAABackAuthenServerConfigSrvIndex value will fail.
|
|
Upon reload, casIndex values may be changed."
|
|
::= { fsAAABackAuthenServerConfigEntry 2 }
|
|
|
|
fsAAABackAuthenServerConfigAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the server."
|
|
::= { fsAAABackAuthenServerConfigEntry 3 }
|
|
|
|
fsAAABackAuthenServerConfigAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for authentication in the server.
|
|
For RADIUS, default value is 1812."
|
|
::= { fsAAABackAuthenServerConfigEntry 4 }
|
|
|
|
fsAAABackAuthenServerConfigAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for accounting service in the server.
|
|
For RADIUS, default value is 1813."
|
|
::= { fsAAABackAuthenServerConfigEntry 5 }
|
|
|
|
fsAAABackAuthenServerConfigKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with this server.
|
|
Retrieving the value of this object via SNMP will return an
|
|
empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAABackAuthenServerConfigEntry 6 }
|
|
|
|
fsAAABackAuthenServerConfigRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAABackAuthenServerConfigEntry 7 }
|
|
|
|
--
|
|
-- fsAAAMasterAcctServerConfigTable
|
|
--
|
|
fsAAAMasterAcctServerConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAAMasterAcctServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for
|
|
AAA Master Accounting server, allows existing servers to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 20 }
|
|
|
|
fsAAAMasterAcctServerConfigEntry OBJECT-TYPE
|
|
SYNTAX FSAAAMasterAcctServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA Master Accounting server configuration identified by its
|
|
group name and its index."
|
|
INDEX { fsAAAMasterAcctServerConfigGrpName,
|
|
fsAAAMasterAcctServerConfigSrvIndex}
|
|
::= { fsAAAMasterAcctServerConfigTable 1}
|
|
|
|
FSAAAMasterAcctServerConfigEntry ::=
|
|
SEQUENCE {
|
|
fsAAAMasterAcctServerConfigGrpName DisplayString,
|
|
fsAAAMasterAcctServerConfigSrvIndex Unsigned32,
|
|
fsAAAMasterAcctServerConfigAddress IpAddress,
|
|
fsAAAMasterAcctServerConfigAuthPort INTEGER,
|
|
fsAAAMasterAcctServerConfigAcctPort INTEGER,
|
|
fsAAAMasterAcctServerConfigKeyStr DisplayString,
|
|
fsAAAMasterAcctServerConfigRowStatus RowStatus
|
|
}
|
|
|
|
fsAAAMasterAcctServerConfigGrpName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the group name it belong to.."
|
|
::= { fsAAAMasterAcctServerConfigEntry 1 }
|
|
|
|
fsAAAMasterAcctServerConfigSrvIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A number uniquely identifying each server.
|
|
If the fsAAAMasterAcctServerConfigSrvIndex value for row creation is
|
|
already in use by an existing entry, snmp set to the
|
|
fsAAAMasterAcctServerConfigSrvIndex value will fail.
|
|
Upon reload, casIndex values may be changed."
|
|
::= { fsAAAMasterAcctServerConfigEntry 2 }
|
|
|
|
fsAAAMasterAcctServerConfigAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the server."
|
|
::= { fsAAAMasterAcctServerConfigEntry 3 }
|
|
|
|
fsAAAMasterAcctServerConfigAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for authentication in the server.
|
|
For RADIUS, default value is 1812."
|
|
::= { fsAAAMasterAcctServerConfigEntry 4 }
|
|
|
|
fsAAAMasterAcctServerConfigAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for accounting service in the server.
|
|
For RADIUS, default value is 1813."
|
|
::= { fsAAAMasterAcctServerConfigEntry 5 }
|
|
|
|
fsAAAMasterAcctServerConfigKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with this server.
|
|
Retrieving the value of this object via SNMP will return an
|
|
empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAAMasterAcctServerConfigEntry 6 }
|
|
|
|
fsAAAMasterAcctServerConfigRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAAMasterAcctServerConfigEntry 7 }
|
|
|
|
--
|
|
-- fsAAABackAcctServerConfigTable
|
|
--
|
|
fsAAABackAcctServerConfigTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAABackAcctServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current configurations for
|
|
AAA Back Accounting server, allows existing servers to be removed
|
|
and new ones to be created."
|
|
::= { fsAAAServerObjects 21 }
|
|
|
|
fsAAABackAcctServerConfigEntry OBJECT-TYPE
|
|
SYNTAX FSAAABackAcctServerConfigEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA Back Accounting server configuration identified by its
|
|
group name and its index."
|
|
INDEX { fsAAABackAcctServerConfigGrpName,
|
|
fsAAABackAcctServerConfigSrvIndex }
|
|
::= { fsAAABackAcctServerConfigTable 1}
|
|
|
|
FSAAABackAcctServerConfigEntry ::=
|
|
SEQUENCE {
|
|
fsAAABackAcctServerConfigGrpName DisplayString,
|
|
fsAAABackAcctServerConfigSrvIndex Unsigned32,
|
|
fsAAABackAcctServerConfigAddress IpAddress,
|
|
fsAAABackAcctServerConfigAuthPort INTEGER,
|
|
fsAAABackAcctServerConfigAcctPort INTEGER,
|
|
fsAAABackAcctServerConfigKeyStr DisplayString,
|
|
fsAAABackAcctServerConfigRowStatus RowStatus
|
|
}
|
|
|
|
fsAAABackAcctServerConfigGrpName OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the group name the server belong to."
|
|
::= { fsAAABackAcctServerConfigEntry 1 }
|
|
|
|
fsAAABackAcctServerConfigSrvIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A number uniquely identifying each server.
|
|
If the fsAAABackAcctServerConfigSrvIndex value for row creation is
|
|
already in use by an existing entry, snmp set to the
|
|
fsAAABackAcctServerConfigSrvIndex value will fail.
|
|
Upon reload, casIndex values may be changed."
|
|
::= { fsAAABackAcctServerConfigEntry 2 }
|
|
|
|
fsAAABackAcctServerConfigAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the server."
|
|
::= { fsAAABackAcctServerConfigEntry 3 }
|
|
|
|
fsAAABackAcctServerConfigAuthPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for authentication in the server.
|
|
For RADIUS, default value is 1812."
|
|
::= { fsAAABackAcctServerConfigEntry 4 }
|
|
|
|
fsAAABackAcctServerConfigAcctPort OBJECT-TYPE
|
|
SYNTAX INTEGER (0..65535)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"UDP/TCP port used for accounting service in the server.
|
|
For RADIUS, default value is 1813."
|
|
::= { fsAAABackAcctServerConfigEntry 5 }
|
|
|
|
fsAAABackAcctServerConfigKeyStr OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (0..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server key to be used with this server.
|
|
Retrieving the value of this object via SNMP will return an
|
|
empty string for security reasons."
|
|
DEFVAL { "" }
|
|
::= { fsAAABackAcctServerConfigEntry 6 }
|
|
|
|
fsAAABackAcctServerConfigRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry. Once the entry status is
|
|
set to active, the associated entry cannot be modified except
|
|
destroyed by setting this object to destroy(6)."
|
|
::= { fsAAABackAcctServerConfigEntry 7 }
|
|
|
|
fsAAAServerTotalAuthUserCount OBJECT-TYPE
|
|
SYNTAX Unsigned32 (0..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The total number of users who send authentication request."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 22 }
|
|
|
|
fsAAAServerAuthSuccUserCount OBJECT-TYPE
|
|
SYNTAX Unsigned32 (0..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of users who pass authentication."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 23 }
|
|
|
|
fsAAAServerDot1xOnlineUserCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of dot1x user online."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 24 }
|
|
|
|
fsAAAServerMacOnlineUserCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of mac user online."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 25 }
|
|
|
|
fsAAAServerWebOnlineUserCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The number of web user online."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 26 }
|
|
|
|
fsAAAServerTatalOnlineUserCount OBJECT-TYPE
|
|
SYNTAX Integer32
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The tatal number of user online."
|
|
DEFVAL { 0 }
|
|
::= { fsAAAServerObjects 27 }
|
|
|
|
--
|
|
-- fsAAAServerIfOnlineUserTable
|
|
--
|
|
fsAAAServerIfOnlineUserTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF FSAAAServerIfOnlineUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This table shows current dot1x mac and web user online on
|
|
the interface."
|
|
::= { fsAAAServerObjects 28 }
|
|
|
|
fsAAAServerIfOnlineUserEntry OBJECT-TYPE
|
|
SYNTAX FSAAAServerIfOnlineUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The table of AAA Server If Online User identified by if
|
|
index."
|
|
INDEX { fsAAAServerIfOnlineUserIfIndex}
|
|
::= { fsAAAServerIfOnlineUserTable 1 }
|
|
FSAAAServerIfOnlineUserEntry ::=
|
|
SEQUENCE {
|
|
fsAAAServerIfOnlineUserIfIndex Unsigned32,
|
|
fsAAAServerIfOnlineUserDot1xCount Unsigned32,
|
|
fsAAAServerIfOnlineUserWebCount Unsigned32,
|
|
fsAAAServerIfOnlineUserMacCount Unsigned32,
|
|
fsAAAServerIfOnlineUserTotalCount Unsigned32
|
|
}
|
|
|
|
fsAAAServerIfOnlineUserIfIndex OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The variable denotes the interface index the user on."
|
|
::= { fsAAAServerIfOnlineUserEntry 1 }
|
|
|
|
fsAAAServerIfOnlineUserDot1xCount OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Dot1x user online count on this interface."
|
|
::= { fsAAAServerIfOnlineUserEntry 2 }
|
|
|
|
fsAAAServerIfOnlineUserWebCount OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Web user online count on this interface."
|
|
::= { fsAAAServerIfOnlineUserEntry 3 }
|
|
|
|
fsAAAServerIfOnlineUserMacCount OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Mac user online count on this interface."
|
|
::= { fsAAAServerIfOnlineUserEntry 4 }
|
|
|
|
fsAAAServerIfOnlineUserTotalCount OBJECT-TYPE
|
|
SYNTAX Unsigned32 (1..4294967295)
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Web mac and 1x total online count on this interface."
|
|
::= { fsAAAServerIfOnlineUserEntry 5 }
|
|
|
|
--
|
|
-- AAA user apply parameters.
|
|
--
|
|
fsAAAUserApplyObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 7 }
|
|
fsAAADo1xApplyObjects OBJECT IDENTIFIER ::= { fsAAAUserApplyObjects 1 }
|
|
|
|
--
|
|
-- AAA dot1x apply settings.
|
|
--
|
|
fsDot1xAuthenMethodList OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of 802.1x
|
|
authentication method-list."
|
|
DEFVAL { "" }
|
|
::= { fsAAADo1xApplyObjects 1 }
|
|
|
|
fsDot1xAuthorMethodList OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of 802.1x
|
|
authorization method-list."
|
|
DEFVAL { "" }
|
|
::= { fsAAADo1xApplyObjects 2 }
|
|
|
|
fsDot1xAcctMethodList OBJECT-TYPE
|
|
SYNTAX DisplayString (SIZE (1..63))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A human readable string representing the name of 802.1x
|
|
accounting method-list."
|
|
DEFVAL { "" }
|
|
::= { fsAAADo1xApplyObjects 3 }
|
|
|
|
---
|
|
---AS Server IP configure
|
|
---
|
|
|
|
fsRdASObjects OBJECT IDENTIFIER ::= { fsAAAMIBObjects 8 }
|
|
|
|
fsRdASipInetAddreType OBJECT-TYPE
|
|
SYNTAX InetAddressType
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The type of address format used for the
|
|
fsRdASipInetAddreType object."
|
|
::= { fsRdASObjects 1 }
|
|
|
|
fsRdASipInsetAddres OBJECT-TYPE
|
|
SYNTAX InetAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP address of the AS server."
|
|
::= { fsRdASObjects 2 }
|
|
|
|
|
|
---
|
|
---Radius Auth and Acc Traps
|
|
---
|
|
-- All trap definitions should be placed under this object.
|
|
fsRadiusServerTrap OBJECT IDENTIFIER ::= { fsAAAMIB 0 }
|
|
|
|
fsRadiusAuthServerDownTrap NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
radiusAuthServerAddress,
|
|
radiusAuthClientServerPortNumber }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This trap is generated when the Authentication Radius server
|
|
doesn't respond client's requests for specified times."
|
|
::= { fsRadiusServerTrap 1 }
|
|
|
|
fsRadiusAccServerDownTrap NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
radiusAccServerAddress,
|
|
radiusAccClientServerPortNumber }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This trap is generated when the Accounting Radius server
|
|
doesn't respond client's requests for specified times."
|
|
::= { fsRadiusServerTrap 2 }
|
|
|
|
fsRadiusAuthServerRecoverTrap NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
radiusAuthServerAddress,
|
|
radiusAuthClientServerPortNumber }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This trap is generated when the Authentication Radius server
|
|
recover from the down status."
|
|
::= { fsRadiusServerTrap 3 }
|
|
|
|
fsRadiusAccServerRecoverTrap NOTIFICATION-TYPE
|
|
OBJECTS {
|
|
radiusAccServerAddress,
|
|
radiusAccClientServerPortNumber }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This trap is generated when the Accounting Radius server
|
|
recover from the down status."
|
|
::= { fsRadiusServerTrap 4 }
|
|
|
|
fsAAAMIBConformance OBJECT IDENTIFIER ::= { fsAAAMIB 2 }
|
|
fsAAAMIBCompliances OBJECT IDENTIFIER ::= { fsAAAMIBConformance 1 }
|
|
fsAAAMIBGroups OBJECT IDENTIFIER ::= { fsAAAMIBConformance 2 }
|
|
|
|
|
|
-- compliance statements
|
|
|
|
fsAAAMIBCompliance MODULE-COMPLIANCE
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The compliance statement for entities which implement
|
|
the FS AAA MIB"
|
|
MODULE -- this module
|
|
MANDATORY-GROUPS {
|
|
fsDot1xAuthMIBGroup,
|
|
fsAAAServerMIBGroup,
|
|
fsAuthAddrMIBGroup,
|
|
fsAuthModeMIBGroup,
|
|
fsAAAConfigMIBGroup,
|
|
fsAAAUserApplyMIBGroup,
|
|
fsRdASGroup
|
|
}
|
|
GROUP fsClientProbeGroup
|
|
DESCRIPTION
|
|
"This group is mandatory only for those system which support client
|
|
probe function."
|
|
|
|
::= { fsAAAMIBCompliances 1 }
|
|
|
|
-- units of conformance
|
|
|
|
fsDot1xAuthMIBGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsDot1xAuthStatus,
|
|
fsDot1xAuthObjectsQuietPeriod,
|
|
fsDot1xAuthObjectsTxPeriod,
|
|
fsDot1xAuthObjectsSuppTimeout,
|
|
fsDot1xAuthObjectsServerTimeout,
|
|
fsDot1xAuthObjectsMaxReq,
|
|
fsDot1xAuthObjectsReAuthPeriod,
|
|
fsDot1xAuthObjectsReAuthEnable,
|
|
fsDot1xAuthObjectsConfigFdbId,
|
|
fsDot1xAuthObjectsConfigAddr,
|
|
fsDot1xAuthObjectsPaeState,
|
|
fsDot1xAuthObjectsBackendAuthState,
|
|
fsDot1xAuthObjectsAuthControlledPortStatus,
|
|
fsDot1xAuthObjectsKeyTxEnabled,
|
|
fsDot1xAuthObjectsIfIndex,
|
|
fsDot1xAuthObjectsStatsFdbId,
|
|
fsDot1xAuthObjectsStatsAddr,
|
|
fsDot1xAuthObjectsEapolFramesRx,
|
|
fsDot1xAuthObjectsEapolFramesTx,
|
|
fsDot1xAuthObjectsEapolFSFramesRx,
|
|
fsDot1xAuthObjectsEapolLogoffFramesRx,
|
|
fsDot1xAuthObjectsEapolRespIdFramesRx,
|
|
fsDot1xAuthObjectsEapolRespFramesRx,
|
|
fsDot1xAuthObjectsEapolReqIdFramesTx,
|
|
fsDot1xAuthObjectsEapolReqFramesTx,
|
|
fsDot1xAuthObjectsInvalidEapolFramesRx,
|
|
fsDot1xAuthObjectsEapLengthErrorFramesRx,
|
|
fsDot1xAuthObjectsLastEapolFrameVersion,
|
|
fsDot1xAuthObjectsLastEapolFrameSource,
|
|
fsDot1xCurrentUserNumber,
|
|
fsDot1xCurrentAuthenticatedUserNumber,
|
|
fsDot1xAuthObjectsMaxReauth,
|
|
fsAuthIf,
|
|
fsAuthIfStatus,
|
|
fsAuthenticationMode,
|
|
fsDot1xPseudoSrcmac,
|
|
fsDot1xAbnormalOfflineUserCount,
|
|
fsDot1xTotalAuthUserCount,
|
|
fsDot1xAuthSuccUserCount,
|
|
fsDot1xAuthFailUserCount
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing dot1x authentication managment."
|
|
::= { fsAAAMIBGroups 1 }
|
|
|
|
|
|
fsAAAServerMIBGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsAAAServerAuthPort,
|
|
fsAAAServerAcctPort,
|
|
fsAAAServerRadiusKeyStr,
|
|
fsAAAServerTacplusKeyStr,
|
|
fsAAAServerConfigAddressType,
|
|
fsAAAServerConfigAddress,
|
|
fsAAAServerConfigAuthPort,
|
|
fsAAAServerConfigAcctPort,
|
|
fsAAAServerConfigKeyStr,
|
|
fsAAAServerConfigRowStatus
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing AAA server managment."
|
|
::= { fsAAAMIBGroups 2 }
|
|
|
|
fsAuthAddrMIBGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsAuthMacAddress,
|
|
fsAuthPort,
|
|
fsAuthAddrStatus,
|
|
fsAuthUserFdbId,
|
|
fsAuthUserMacAddress,
|
|
fsAuthUserName,
|
|
fsAuthUserSessionId,
|
|
fsAuthUserIpAddr,
|
|
fsAuthUserPort,
|
|
fsAuthUserStatus
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing address permitted authentication managment."
|
|
::= { fsAAAMIBGroups 3 }
|
|
|
|
fsAuthModeMIBGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsIpAuthorizationMode
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing authentication mode managment."
|
|
::= { fsAAAMIBGroups 4 }
|
|
|
|
fsClientProbeGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsClientProbeEnabledStatus,
|
|
fsClientProbeHelloInterval,
|
|
fsClientProbeAliveInteval
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing client probe management."
|
|
::= { fsAAAMIBGroups 5 }
|
|
|
|
fsAAAConfigMIBGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsAuthenMethodListType,
|
|
fsAuthenMethodListName,
|
|
fsAuthenMethodListString,
|
|
fsAuthenMethodListRowStatus,
|
|
fsAuthorMethodListType,
|
|
fsAuthorMethodListName,
|
|
fsAuthorMethodListCmdLevel,
|
|
fsAuthorMethodListString,
|
|
fsAuthorMethodListRowStatus,
|
|
fsAcctMethodListType,
|
|
fsAcctMethodListName,
|
|
fsAcctMethodListMode,
|
|
fsAcctMethodListCmdLevel,
|
|
fsAcctMethodListString,
|
|
fsAcctMethodListRowStatus,
|
|
fsAAARadiusGroupName,
|
|
fsAAARadiusGroupVrf,
|
|
fsAAARadiusGroupRowStatus,
|
|
fsAAARadiusGroupServerAddressType,
|
|
fsAAARadiusGroupServerAddress,
|
|
fsAAARadiusGroupServerAuthPort,
|
|
fsAAARadiusGroupServerAcctPort,
|
|
fsAAARadiusGroupServerRowStatus
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing AAA configuration managment."
|
|
::= { fsAAAMIBGroups 6 }
|
|
|
|
fsAAAUserApplyMIBGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsDot1xAuthenMethodList,
|
|
fsDot1xAuthorMethodList,
|
|
fsDot1xAcctMethodList
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing AAA user apply managment."
|
|
::= { fsAAAMIBGroups 7 }
|
|
|
|
fsRdASGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
fsRdASipInetAddreType,
|
|
fsRdASipInsetAddres
|
|
}
|
|
STATUS current
|
|
DESCRIPTION
|
|
"A collection of objects providing Radius AS management."
|
|
::= { fsAAAMIBGroups 8 }
|
|
|
|
END
|