458 lines
16 KiB
Plaintext
458 lines
16 KiB
Plaintext
--MibName=raisecomUserManageGroup
|
|
-- =======================================================================
|
|
-- Version info
|
|
--
|
|
-- Version 0.1 Created 2002.5.24 by GONGGUIDONG
|
|
-- This version of MIB is created just for management of base and user.
|
|
-- Transfer UserManage group from raisecom-common-management-mib.my to this file by guoxiaodan,20070716
|
|
-- Copyright(c) 2003-2005 by RAISECOM TECH, Ltd.
|
|
-- =======================================================================
|
|
--MODIFY RECORD
|
|
--06,20130129,guokai, Add raisecomUserPasswordCheckStatus
|
|
--05,20110722,huxiangfeng,upper bound of raisecomUserRadiusAuthKey changed from 255 to 200
|
|
--04, 20091218, hxy, add user excute command control table
|
|
--03£¬20090806£¬gxd£¬ tacacs mib
|
|
--02,20090319,hxy,Add raisecomUserRadiusServerPort
|
|
--01,20090220,gxd,tacacs+mib
|
|
-- ===========================================================================
|
|
|
|
--
|
|
-- RAISECOM base management objects
|
|
--
|
|
|
|
RAISECOM-USER-MANAGEMENT-MIB DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
MODULE-IDENTITY,
|
|
OBJECT-TYPE,
|
|
NOTIFICATION-TYPE ,
|
|
Integer32,
|
|
IpAddress,
|
|
Unsigned32
|
|
FROM SNMPv2-SMI
|
|
RowStatus, TruthValue
|
|
FROM SNMPv2-TC
|
|
DateAndTime,
|
|
EnableVar
|
|
FROM SWITCH-TC
|
|
raisecomCommonManagement
|
|
FROM RAISECOM-COMMON-MANAGEMENT-MIB;
|
|
|
|
raisecomUserManageGroup MODULE-IDENTITY
|
|
LAST-UPDATED "200707200000Z"
|
|
ORGANIZATION "RAISECOM TECH, Ltd."
|
|
CONTACT-INFO "www.raisecom.com"
|
|
DESCRIPTION
|
|
"The MIB module defining objects for user management functions"
|
|
::= { raisecomCommonManagement 2}
|
|
|
|
--groups
|
|
|
|
-- raisecomUserManageGroup OBJECT IDENTIFIER ::= {raisecomCommonManagement 2}
|
|
|
|
|
|
|
|
-- raisecomUserManageGroup
|
|
--scalars
|
|
raisecomUserLogMethod OBJECT-TYPE
|
|
SYNTAX INTEGER{
|
|
local(1),
|
|
radius(2),
|
|
local-radius(3),
|
|
radius-local(4),
|
|
radius-local-no-response(5),
|
|
tacacs(6),
|
|
local-tacacs(7),
|
|
tacacs-local(8),
|
|
tacacs-local-no-response(9)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"stand for the method for user to log in system.
|
|
local for log on user to user information from local system;
|
|
local_radius for get user information on local system and then from radius server;
|
|
radius_local for first get user on radius server and then from local system;
|
|
radius-local server-no-response for first get user on radius server and then from local system, when there is no response from radius server;
|
|
tacacs+ for get user information only from tacacs+ server;
|
|
local_tacacs+ for first get user information on local system and then from on tacacs+ server;
|
|
tacacs+_local for first get user information on tacacs+ server and then from local system;
|
|
tacacs+_local server-no-response for first get user information on tacacs+ server and then from local system when there is no response from tacacs+ server;"
|
|
::= { raisecomUserManageGroup 1 }
|
|
|
|
raisecomUserRadiusServerAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The IP Address of Radius server to store user information."
|
|
::= { raisecomUserManageGroup 2 }
|
|
|
|
raisecomUserRadiusAuthKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..200))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The shared secret text string used between the authenticator and a RADIUS server."
|
|
::= { raisecomUserManageGroup 3 }
|
|
|
|
raisecomEnableLogMethod OBJECT-TYPE
|
|
SYNTAX INTEGER{
|
|
local(1),
|
|
radius(2),
|
|
local-radius(3),
|
|
radius-local(4),
|
|
radius-local-no-response(5),
|
|
tacacs(6),
|
|
local-tacacs(7),
|
|
tacacs-local(8),
|
|
tacacs-local-no-response(9)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"stand for the method for user to enable in system.
|
|
local for log on user to user information from local system;
|
|
local_radius for get user information on local system and then from radius server;
|
|
radius_local for first get user on radius server and then from local system;
|
|
radius-local server-no-response for first get user on radius server and then from local system, when there is no response from radius server;
|
|
tacacs+ for get user information only from tacacs+ server;
|
|
local_tacacs+ for first get user information on local system and then from on tacacs+ server;
|
|
tacacs+_local for first get user information on tacacs+ server and then from local system;
|
|
tacacs+_local server-no-response for first get user information on tacacs+ server and then from local system when there is noresponse from tacacs+ server;"
|
|
::= { raisecomUserManageGroup 4 }
|
|
|
|
--user manage table
|
|
raisecomUserTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF RaisecomUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "User manage table"
|
|
::= { raisecomUserManageGroup 5 }
|
|
|
|
raisecomUserEntry OBJECT-TYPE
|
|
SYNTAX RaisecomUserEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "An entry in the raisecomUserTable."
|
|
INDEX { raisecomUserServerIP, raisecomUsername }
|
|
::= { raisecomUserTable 1 }
|
|
|
|
RaisecomUserEntry ::=
|
|
SEQUENCE {
|
|
raisecomUserServerIP IpAddress,
|
|
raisecomUsername OCTET STRING (SIZE (1..16)),
|
|
raisecomUserPriority INTEGER,
|
|
raisecomUserStatus INTEGER,
|
|
raisecomUserTerminalType INTEGER,
|
|
raisecomUserPassword OCTET STRING (SIZE (1..16)),
|
|
raisecomUserOldPassword OCTET STRING (SIZE (1..16)),
|
|
raisecomUserEntryRowStatus RowStatus,
|
|
raisecomUserLoginType INTEGER,
|
|
raisecomUserTerminalIP OCTET STRING (SIZE (4..128))
|
|
}
|
|
|
|
raisecomUserServerIP OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The server ip address user belongs to.
|
|
local user's server ip is 0.0.0.0."
|
|
::= { raisecomUserEntry 1 }
|
|
|
|
raisecomUsername OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (1..16))
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The name a user login the device with."
|
|
::= { raisecomUserEntry 2 }
|
|
|
|
|
|
raisecomUserPriority OBJECT-TYPE
|
|
SYNTAX INTEGER (1..15)
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"the priority of system user."
|
|
::= { raisecomUserEntry 3 }
|
|
|
|
|
|
raisecomUserStatus OBJECT-TYPE
|
|
SYNTAX INTEGER{
|
|
online(1),
|
|
offline(2)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of a user."
|
|
::= { raisecomUserEntry 4 }
|
|
|
|
raisecomUserTerminalType OBJECT-TYPE
|
|
SYNTAX INTEGER{
|
|
console(0),
|
|
telnet1(1),
|
|
telnet2(2),
|
|
telnet3(3),
|
|
telnet4(4),
|
|
telnet5(5),
|
|
ssh1(6),
|
|
ssh2(7),
|
|
ssh3(8),
|
|
ssh4(9),
|
|
ssh5(10)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS deprecated
|
|
DESCRIPTION
|
|
"Connection type that the user is logon."
|
|
::= { raisecomUserEntry 5 }
|
|
|
|
raisecomUserPassword OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (1..16))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The password of system user."
|
|
::= { raisecomUserEntry 6 }
|
|
|
|
raisecomUserOldPassword OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (1..16))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The old password of system user."
|
|
::= { raisecomUserEntry 7 }
|
|
|
|
raisecomUserEntryRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The status of this table entry."
|
|
::= { raisecomUserEntry 8 }
|
|
|
|
raisecomUserLoginType OBJECT-TYPE
|
|
SYNTAX INTEGER
|
|
{
|
|
local(0),
|
|
tacacs(1),
|
|
radius(2)
|
|
}
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Login type of user."
|
|
::= { raisecomUserEntry 9 }
|
|
|
|
raisecomUserTerminalIP OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (4..128))
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The terminal ip address user belongs to.
|
|
console terminal ip is 0.0.0.0."
|
|
::= { raisecomUserEntry 10 }
|
|
|
|
raisecomEnableLogPassword OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (1..16))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The password for enable log."
|
|
::= { raisecomUserManageGroup 6 }
|
|
|
|
raisecomEnableLogOldPassword OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (1..16))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The old password for enable log."
|
|
::= { raisecomUserManageGroup 7 }
|
|
|
|
raisecomUserTacacsPlusServerAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"IP address of Tacacs+ Server."
|
|
::= { raisecomUserManageGroup 8 }
|
|
|
|
raisecomUserTacacsPlusServerAuthKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE (0..255))
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"This object specifies the name of share key tacacs+ server uses."
|
|
::= { raisecomUserManageGroup 9 }
|
|
|
|
|
|
raisecomUserTacacsPlusResultSendPkts OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS deprecated
|
|
DESCRIPTION
|
|
"This object indicates the number of packets which Tacacs+ client sent to Tacacs+ server."
|
|
::= { raisecomUserManageGroup 10 }
|
|
|
|
raisecomUserTacacsPlusResultReceivePkts OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS deprecated
|
|
DESCRIPTION
|
|
"This object indicates the number of packets which Tacacs+ client received from Tacacs+ server."
|
|
::= { raisecomUserManageGroup 11 }
|
|
raisecomUserTacacsPlusResultErrorPkts OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-only
|
|
STATUS deprecated
|
|
DESCRIPTION
|
|
"This object indicates the number of error packets which Tacacs+ client received from Tacacs+ server."
|
|
::= { raisecomUserManageGroup 12 }
|
|
|
|
raisecomUserRadiusServerPort OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The Port of Radius server to store user information."
|
|
::= { raisecomUserManageGroup 13 }
|
|
|
|
raisecomUserTacacsPlusClearStatistics OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-write
|
|
STATUS deprecated
|
|
DESCRIPTION
|
|
"The purpose of this object is to clear all the packet statistics.
|
|
Set the value to true(1) means clear current packet statistics and begin the next recalculation."
|
|
::= { raisecomUserManageGroup 14 }
|
|
|
|
--user excute command control table
|
|
raisecomUserCmdCtrlTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF raisecomUserCmdCtrlEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "User command control table"
|
|
::= { raisecomUserManageGroup 15 }
|
|
|
|
raisecomUserCmdCtrlEntry OBJECT-TYPE
|
|
SYNTAX raisecomUserCmdCtrlEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "An entry in the raisecomUserCmdCtrlTable."
|
|
INDEX {raisecomUsername, raisecomUserCmdCtrIndex}
|
|
::= { raisecomUserCmdCtrlTable 1 }
|
|
|
|
raisecomUserCmdCtrlEntry ::=
|
|
SEQUENCE {
|
|
raisecomUserCmdCtrIndex INTEGER,
|
|
raisecomUserCmdCtrType INTEGER,
|
|
raisecomUserCmdCtrFirstKey OCTET STRING,
|
|
raisecomUserCmdCtrSecondKey OCTET STRING,
|
|
raisecomUserCmdCtrlEntryRowStatus RowStatus
|
|
}
|
|
|
|
raisecomUserCmdCtrIndex OBJECT-TYPE
|
|
SYNTAX INTEGER (1..15)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION
|
|
"User command control config index, range 0 to 14"
|
|
::= { raisecomUserCmdCtrlEntry 1 }
|
|
|
|
raisecomUserCmdCtrType OBJECT-TYPE
|
|
SYNTAX INTEGER {allow(1), disallow(2)}
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"User command control config type, add a command or remove a command
|
|
for special user could excute"
|
|
::= { raisecomUserCmdCtrlEntry 2 }
|
|
|
|
raisecomUserCmdCtrFirstKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE(1..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The first key word in a command"
|
|
::= { raisecomUserCmdCtrlEntry 3 }
|
|
|
|
raisecomUserCmdCtrSecondKey OBJECT-TYPE
|
|
SYNTAX OCTET STRING (SIZE(1..255))
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"The second key word in a command"
|
|
::= { raisecomUserCmdCtrlEntry 4 }
|
|
|
|
raisecomUserCmdCtrlEntryRowStatus OBJECT-TYPE
|
|
SYNTAX RowStatus
|
|
MAX-ACCESS read-create
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Rowstatus for raisecomUserCmdCtrlEntryRowStatus"
|
|
::= { raisecomUserCmdCtrlEntry 5 }
|
|
|
|
|
|
raisecomUserRadiusServerBackupAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Backup IP Address of Radius server to store user information."
|
|
::= { raisecomUserManageGroup 16 }
|
|
|
|
raisecomUserRadiusServerBackupPort OBJECT-TYPE
|
|
SYNTAX Unsigned32
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Backup Port of Radius server to store user information."
|
|
::= { raisecomUserManageGroup 17 }
|
|
|
|
raisecomUserTacacsPlusServerBackupAddress OBJECT-TYPE
|
|
SYNTAX IpAddress
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Backup IP Address of tacacs plus server to store user information."
|
|
::= { raisecomUserManageGroup 18 }
|
|
|
|
raisecomUserPasswordCheckStatus OBJECT-TYPE
|
|
SYNTAX INTEGER {
|
|
simple(0),
|
|
complex(1)
|
|
}
|
|
MAX-ACCESS read-write
|
|
STATUS current
|
|
DESCRIPTION
|
|
"Specifies the status of check password."
|
|
DEFVAL {simple}
|
|
::= { raisecomUserManageGroup 19 }
|
|
|
|
--user manage table
|
|
raisecomUserTrapGroup OBJECT IDENTIFIER
|
|
::= { raisecomUserManageGroup 20 }
|
|
|
|
raisecomUserLoginTrap NOTIFICATION-TYPE
|
|
OBJECTS { raisecomUserPriority }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"User Login trap."
|
|
::= { raisecomUserTrapGroup 1 }
|
|
|
|
raisecomUserLogoutTrap NOTIFICATION-TYPE
|
|
OBJECTS { raisecomUserPriority }
|
|
STATUS current
|
|
DESCRIPTION
|
|
"User Logout trap."
|
|
::= { raisecomUserTrapGroup 2 }
|
|
|
|
|
|
END
|
|
|
|
|
|
|
|
|