| | |
| 1 | User requesting authentication
Password of user requesting authentication
Password of CHAP user requesting authentication
IP address of the NAS originating the request (IAS only)
Physical port number of the NAS originating the request
Type of service user has requested
The protocol to be used
Framed address to be configured for user
IP netmask to be configured for user
Routing method to be used by user
Name of filter list for user requesting authentication
Maximum Transmission Unit to be configured for user
Compression protocol to be used
IP address of host to which user should be connected
Service connecting user to login host |
| 2 | TCP port to which user should be connected |
| 3 | String identifying the NAS originating the request (IAS only)
String sent by proxy server when forwarding an Access-Request packet
Host with which user is to be connected by LAT
Node with which user is to be connected by LAT
LAT group codes for which user is authorized
AppleTalk network number for the serial link to user (only when user is router)
AppleTalk network number the NAS must probe to allocate user's AppleTalk node
AppleTalk Default Zone for user
Specifies whether Accounting packet starts or stops a bridging routing or terminal server session
Length of time (in seconds) for which the NAS has been sending the same accounting packet
Number of octets received during the session
Number of octets sent during the session
Unique numeric string identifying the server session
Specifies which server authenticated an incoming call
Length of time (in seconds) for which the session has been logged in
Number of packets received during the session |
| 4 | Number of packets sent during the session
Reason a connection was terminated
Unique numeric string identifying the multilink session
Number of links in a multilink session
Number of times the Acct-Input-Octets counter has wrapped around 2^32
Number of times the Acct-Output-Octets counter has wrapped around 2^32 |
| 5 | Tunneling protocols to be used
Transport medium to use when creating a tunnel for protocols (such as L2TP) that can operate over multiple transports
IP address of the initiator end of the tunnel
IP address of the server end of the tunnel
Description not available
Password for authenticating to a remote server
User Password (AppleTalk Remote Access Protocol only)
Information the NAS should send to user in the ARAP feature flags packet (AppleTalk Remote Access Protocol only)
Indicate how the ARAP zone list for user should be used (AppleTalk Remote Access Protocol only)
ARAP Security Module to be used in an Access-Challenge packet (AppleTalk Remote Access Protocol only)
Actual security module challenge or response (AppleTalk Remote Access Protocol only)
Number of times user can try to be authenticated before NAS terminates connection
Specifies to the NAS whether or not it should echo user's response as it is entered
Indicate the nature of user's connection
Indicate a type of user... |
| 6 | Can be used to sign Access-Requests to prevent dictionary attacks on CHAP ARAP or EAP authentication methods
Group ID for a particular tunneled session
Tunnel to which a session is to be assigned
Relative preference assigned to each tunnel when more than one set of tunneling attributes is returned to the tunnel initiator |
| 7 | Delay (in seconds) before the Ascend NAS calls user back |
| 8 | Port number for the modem the Ascend NAS is using
Slot number for the modem the Ascend NAS is using
Shelf number for the modem the Ascend NAS is using |
| 9 | Specifies whether dial-out is allowed
Gateway to be used by the Ascend NAS |
| 10 | Specifies when user is a multicast client of the Ascend NAS
Time (in seconds) the Ascend NAS waits before accepting another packet from a multicast client
Subnet mask in use for the local numbered interface
IP address of the numbered interface at the remote end of a link
PVC (Permanent Virtual Connection) for which user profile is an endpoint
Specifies whether the frame relay link comes up automatically in a Frame Relay Profile
Associates a group of nailed-up channels with the Frame Relay Profile
Type of frame relay connection used by the Frame Relay Profile |
| 11 | Link management protocol used between the Ascend NAS and the frame relay switch in a Frame Relay Profile
Interval (in seconds) between Ascend NAS requests for Full Status Reports in a Frame Relay Profile
Number of errors during Ascend-FR-DCE-N393-monitored events that cause the network side to declare user side's procedures inactive
Number of errors during Ascend-FR-DTE-N393-monitored events that cause user side to declare the network side's procedures inactive
DCE-monitored event count. A link is always considered active if the value of Ascend-FR-DCE-N393 is not reached
DTE-monitored event count. A link is always considered active if the value of Ascend-FR-DTE-N393 is not reached
The Link Integrity Verification polling timer
Time the unit should wait between Status Inquiry messages
Description not available
Length of time (in seconds) that a terminal server connection must be idle before the Ascend NAS disconnects the session
Specifies whether the Ascend NAS uses a terminal s... |
| 12 | Profile name of a backup profile for a nailed-up link
Type of nailed-up connection used
Nailed-up channels used by WAN link
Data Link Connection Indicator that identifies the Connection Profile to the frame relay switch
Name of the Frame Relay Profile for this connection
Password of the incoming caller on an AppleTalk Remote Access connection
Unique IPX node address
IP address of home agent in ATMP operation
Password sent by foreign agent to home agent in ATMP operation
Connection Profile through which home agent sends packets received by mobile node in ATMP operation
UDP port foreign agent to send messages to home agent
ID of a Multilink bundle (multichannel MP or MP+ call)
Number of sessions remaining in a Multilink bundle (multichannel MP or MP+ call) as reported in an Accounting Stop packet
Destination IP address of the first packed received in an authenticated connection
Number of input octets received before authentication
Number of output octets sent before authenticati... |
| 13 | Number of input packets received before authentication
Number of output packets sent before authentication
Length of time (in seconds) before session is terminated by Ascend NAS
Reason a connection was terminated
State of connection before it is terminated
Data rate of connection (in bits per second)
Length of time (in seconds) between when a call connects and when authentication is complete
Length of time (in minutes) a cached token can remain alive between authentications if a call is idle (Ascend NAS only)
Method RADIUS uses to handle passwords received from users who are required to use hand-held security card server
Specifies whether additional authentication is required for CLID-authenticated calls (Ascend NAS only)
Number of active sessions of the class specified in the Class attribute
Ascend NAS login name for PPP authentication
Lifetime of a cached token or hand-held security card authentication (Ascend NAS only)
Prompt for user input in the terminal server menu inter... |
| 14 | The number of days for which user's password is valid (Ascend NAS only)
IP address to which Ascend NAS redirects packets from user
Specifies that Ascend PPP code must not use slot compression when sending VJ-compressed packets
Specifies that Ascend PPP code must use 0x0037 value for VJ compression type
Async control character map that Ascend PPP code must use during the PPP session (Ascend NAS only)
Additional prompt for user input after login and password prompts (Ascend NAS only)
Specifies that password is encrypted when passed between RADIUS server and Ascend NAS. Used in place of Ascend-Send-Passwd.
Value received from dial-in user used to verify encrypted password
Mode of the IPX router module
Defines an IP address pool for dynamic assignment
Index number of the IP address pool that user must use for dynamic address assignment
Specifies whether Connection Profile uses frame relay redirect mode (Ascend NAS only)
Name of Frame Relay Profile
DLCI (Data Link Connection Indica... |
| 15 | IPX address used by NAS when connecting to IPX routers requiring numbered interfaces
Virtual hop count of the route
Type of phone number the MAX dials
Phone number the Ascend NAS dials to reach the bridge router or node at the remote end of the link
Enables IP routing
Enables IPX routing
Specifies that protocol-independent bridging should be used for current connection
Protocol to use for name-password authentication following CLID authentication
Password to be sent by IAS to the remote end of a connection on outgoing calls
Description not available
Percentage of bandwidth use at which the Ascend NAS adds or subtracts bandwidth.
Maximum number of channels allowed on an MP+ call
Number of channels the Ascend NAS adds when bandwidth changes either manually or automatically during a call |
| 16 | Time in seconds by which average line utilization for transmitted data must exceed the threshold indicated by the Ascend-Target-Util attribute before the Ascend NAS adds bandwidth
Time that average line use for transmitted data must fall below the threshold indicated by the Ascend-Target-Util attribute before the Ascend NAS removes bandwidth from a session
Data filter for Ascend NAS
Call filter for Ascend NAS
Length of time (in seconds) the Ascend NAS waits before clearing a call when a session is inactive
Number of idle seconds the Ascend NAS waits before using one of the channels of an idle link for a new call
Enables or disables callback on the Ascend NAS
Specifies data service used by Ascend NAS
Specifies whether Ascend NAS uses only 56-KBps portion of a channel even if all 64 KBps are available
Billing number for charges incurred on the line
Specifies the T1 PRI service used by NAS
U.S Interexchange Carrier (IEC) you use for long distance calls over a T1 PRI line |
| 17 | Framed address to be configured for user (for IAS internal use only)
Phone number to be used for callback (for IAS internal use only)
Phone number from which call originated
Phone number from which call originated (for IAS internal use only)
Routing information to be configured on the NAS for user (for IAS internal use only)
Ignore the user's dial-in properties
Time periods and days of week during which user is allowed to connect
Phone number dialed by user
Port types permitted for a connection
Authentication types permitted for a connection
EAP encryption modes permitted for a connection
Shared secret used by NAS
IP address of RADIUS client. (IAS only) |
| 18 | Manufacturer of RADIUS proxy or NAS. (IAS only)
Port IAS uses to communicate with client |
| 19 | Friendly name for the RADIUS client. (IAS only)
Description not available
Description not available
Windows groups that user belongs to
EAP Friendly name |
| 20 | Friendly name of Network Access Policy |
| 21 | Specifies the allowed OIDs in dotted decimal format for the certificate Enhanced Key Usage (EKU) when performing certificate-based authentication (EAP-TLS). |
| 22 | Cisco AV Pair VSA |
| 23 | Indicates the Quality of Service values the switch will use for the packets fromm the user
Indicates the IEEE 802.1p priority value. |
| 24 | SdoMachine Class |
| 25 | SdoService Class |
| 26 | Configures IAS, which performs authentication, authorization and accounting of dial-up and VPN users. IAS supports the RADIUS protocol. |
| 27 | Internet Authentication Service |
| 28 | Description not available |
| 29 | User's connection encryption type |
