Chapter 19 Authentication & Accounting
GS-2024 User’s Guide
148
19.2.5 Tunnel Protocol Attribute
You can configure tunnel protocol attributes on the RADIUS server (refer to your RADIUS
server documentation) to assign a port on the Switch to a VLAN based on IEEE 802.1x
authentication. The port VLAN settings are fixed and untagged. This will also set the port’s
VID. The following table describes the values you need to configure. Note that the bolded
values in the table are fixed values as defined in RFC 3580.
19.3 Supported RADIUS Attributes
Remote Authentication Dial-In User Service (RADIUS) attributes are data used to define
specific authentication, and accounting elements in a user profile, which is stored on the
RADIUS server. This section lists the RADIUS attributes supported by the Switch.
Refer to RFC 2865 for more information about RADIUS attributes used for authentication.
Refer to RFC 2866 and RFC 2869 for RADIUS attributes used for accounting.
This section lists the attributes used by authentication and accounting functions on the Switch.
In cases where the attribute has a specific format associated with it, the format is specified.
Egress Bandwidth
Assignment
Vendor-Id =
890
Vendor-Type =
2
Vendor-data =
egress rate (Kbps in decimal format)
Privilege Assignment
Vendor-ID =
890
Vendor-Type =
3
Vendor-Data = "
shell:priv-lvl=
N"
or
Vendor-ID =
9
(CISCO)
Vendor-Type =
1
(CISCO-AVPAIR)
Vendor-Data = "
shell:priv-lvl=
N"
where
N
is a privilege level (from 0 to 14).
Note: If you set the privilege level of a login account differently
on the RADIUS server(s) and the Switch, the user is
assigned a privilege level from the database (RADIUS or
local) the Switch uses first for user authentication.
Table 48
Supported VSAs
FUNCTION
ATTRIBUTE
Table 49
Supported Tunnel Protocol Attribute
FUNCTION
ATTRIBUTE
VLAN Assignment
Tunnel-Type =
VLAN(13)
Tunnel-Medium-Type =
802(6)
Tunnel-Private-Group-ID =
VLAN ID
Note: You must also create a VLAN with the specified VID on
the Switch.
Summary of Contents for Dimension GS-2024
Page 2: ......
Page 7: ...Safety Warnings GS 2024 User s Guide 7 This product is recyclable Dispose of it properly ...
Page 8: ...Safety Warnings GS 2024 User s Guide 8 ...
Page 26: ...List of Tables GS 2024 User s Guide 26 ...
Page 28: ...28 ...
Page 36: ...Chapter 2 Hardware Installation and Connection GS 2024 User s Guide 36 ...
Page 44: ...44 ...
Page 62: ...Chapter 6 System Status and Port Statistics GS 2024 User s Guide 62 ...
Page 70: ...Chapter 7 Basic Setting GS 2024 User s Guide 70 Figure 27 Basic Setting IP Setup ...
Page 74: ...Chapter 7 Basic Setting GS 2024 User s Guide 74 ...
Page 76: ...76 ...
Page 88: ...Chapter 8 VLAN GS 2024 User s Guide 88 ...
Page 110: ...Chapter 13 Mirroring GS 2024 User s Guide 110 ...
Page 120: ...Chapter 15 Port Authentication GS 2024 User s Guide 120 ...
Page 138: ...Chapter 18 Multicast GS 2024 User s Guide 138 ...
Page 152: ...Chapter 19 Authentication Accounting GS 2024 User s Guide 152 ...
Page 157: ...157 PART IV IP Application Static Route 159 Differentiated Services 163 DHCP 167 ...
Page 158: ...158 ...
Page 162: ...Chapter 21 Static Route GS 2024 User s Guide 162 ...
Page 166: ...Chapter 22 Differentiated Services GS 2024 User s Guide 166 ...
Page 174: ...174 ...
Page 198: ...Chapter 25 Access Control GS 2024 User s Guide 198 ...
Page 200: ...Chapter 26 Diagnostic GS 2024 User s Guide 200 ...
Page 204: ...Chapter 27 Syslog GS 2024 User s Guide 204 ...
Page 218: ...218 ...
Page 222: ...Chapter 32 Troubleshooting GS 2024 User s Guide 222 ...
Page 230: ...Chapter 33 Product Specifications GS 2024 User s Guide 230 ...
Page 232: ...232 ...
Page 240: ...Appendix A Pop up Windows JavaScripts and Java Permissions GS 2024 User s Guide 240 ...
Page 252: ...Appendix C Legal Information GS 2024 User s Guide 252 ...
Page 258: ...Appendix D Customer Support GS 2024 User s Guide 258 ...
Page 266: ...Index GS 2024 User s Guide 266 ...