paulmataruso/compose-prometheus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
compose-prometheus/snmp_generator/mibs/CISCO-LWAPP-AAA-MIB.my
paulmataruso 62c58cafa0 First Upload
2024-10-19 18:31:43 +00:00

1156 lines
40 KiB
Plaintext
Raw Permalink Blame History

-- *******************************************************************
-- CISCO-LWAPP-AAA-MIB.my
-- November 2006, Devesh Pujari, Srinath Candadai
--
-- Copyright (c) 2006, 2009-2010 by Cisco Systems Inc.
-- All rights reserved.
-- *******************************************************************
CISCO-LWAPP-AAA-MIB DEFINITIONS ::= BEGIN
IMPORTS
MODULE-IDENTITY,
OBJECT-TYPE,
NOTIFICATION-TYPE,
Unsigned32,
Integer32,
Gauge32
FROM SNMPv2-SMI
MODULE-COMPLIANCE,
NOTIFICATION-GROUP,
OBJECT-GROUP
FROM SNMPv2-CONF
MacAddress,
DisplayString,
TruthValue,
StorageType,
RowStatus,
TimeInterval
FROM SNMPv2-TC
InetAddressType,
InetAddress,
InetPortNumber
FROM INET-ADDRESS-MIB
SnmpAdminString
FROM SNMP-FRAMEWORK-MIB
CLSecKeyFormat
FROM CISCO-LWAPP-TC-MIB
cLWlanIndex
FROM CISCO-LWAPP-WLAN-MIB
ciscoMgmt
FROM CISCO-SMI;
-- ********************************************************************
-- * MODULE IDENTITY
-- ********************************************************************
ciscoLwappAAAMIB MODULE-IDENTITY
LAST-UPDATED "201007250000Z"
ORGANIZATION "Cisco Systems Inc."
CONTACT-INFO
"Cisco Systems,
Customer Service
Postal: 170 West Tasman Drive
San Jose, CA 95134
USA
Tel: +1 800 553-NETS
Email: cs-wnbu-snmp@cisco.com"
DESCRIPTION
"This MIB is intended to be implemented on all those
devices operating as Central Controllers (CC), that
terminate the Light Weight Access Point Protocol
tunnel from Cisco Light-weight LWAPP Access Points.
Information provided by this MIB is used to manage
AAA information on the controller.
The relationship between CC and the LWAPP APs
can be depicted as follows:
+......+ +......+ +......+
+ + + + + +
+ CC + + CC + + CC +
+ + + + + +
+......+ +......+ +......+
.. . .
.. . .
. . . .
. . . .
. . . .
. . . .
+......+ +......+ +......+ +......+
+ + + + + + + +
+ AP + + AP + + AP + + AP +
+ + + + + + + +
+......+ +......+ +......+ +......+
. . .
. . . .
. . . .
. . . .
. . . .
+......+ +......+ +......+ +......+
+ + + + + + + +
+ MN + + MN + + MN + + MN +
+ + + + + + + +
+......+ +......+ +......+ +......+
The LWAPP tunnel exists between the controller and
the APs. The MNs communicate with the APs through
the protocol defined by the 802.11 standard.
LWAPP APs, upon bootup, discover and join one of the
controllers and the controller pushes the configuration,
that includes the WLAN parameters, to the LWAPP APs.
The APs then encapsulate all the 802.11 frames from
wireless clients inside LWAPP frames and forward
the LWAPP frames to the controller.
GLOSSARY
Access Point ( AP )
An entity that contains an 802.11 medium access
control ( MAC ) and physical layer ( PHY ) interface
and provides access to the distribution services via
the wireless medium for associated clients.
LWAPP APs encapsulate all the 802.11 frames in
LWAPP frames and sends them to the controller to which
it is logically connected.
Light Weight Access Point Protocol ( LWAPP )
This is a generic protocol that defines the
communication between the Access Points and the
Central Controller.
Mobile Node ( MN )
A roaming 802.11 wireless device in a wireless
network associated with an access point. Mobile Node
and client are used interchangeably.
Terminal Access Controller Access-Control System
( TACACS )
A remote authentication protocol that is used to
communicate with an authentication server.
TACACS allows a remote access server to communicate
with an authentication server in order to determine
if the user has access to the network.
Remote Authentication Dial In User Service (RADIUS)
It is an AAA (authentication, authorization and accounting)
protocol for applications such as network access or
IP mobility. It is intended to work in both local and
roaming situations.
Wireless LAN ( WLAN )
It is a wireless local area network, which is the
linking of two or more computers without using wires.
It uses radio communication to accomplish the same
functionality of a wired LAN.
PAP - Password Authentication Protocol
CHAP - Challenge Handshake Authentication Protocol
MD5-CHAP - Message Digest 5 Challenge Handshake Authentication
Protocol
LSC - Local Significant Certificate
LSC can be used if we want our own public key
infrastructure (PKI) to provide better security,
to have control of our certificate authority (CA),
and to define policies, restrictions, and usages
on the generated certificates.
REFERENCE
[1] Wireless LAN Medium Access Control ( MAC ) and
Physical Layer ( PHY ) Specifications
[2] Draft-obara-capwap-lwapp-00.txt, IETF Light
Weight Access Point Protocol"
REVISION "201007250000Z"
DESCRIPTION
"A new variable, claWlanAuthServerEnabled
has been added to the existing table, claWlanTable.
A new scalar variable, claSaveUserData has been
added to support saving of user configuration data to NVRAM.
The following scalar variables have been added to support
RADIUS web auth and fallback configuration.
claWebRadiusAuthentication
claRadiusFallbackMode
claRadiusFallbackUsername
claRadiusFallbackInterval
claRadiusAuthMacDelimiter
claRadiusAcctMacDelimiter
The following scalar vriables have been added to support
AP policy configuration
claAcceptMICertificate
claAcceptLSCertificate
claAllowAuthorizeLscApAgainstAAA
A new scalar read-only variable, claDBCurrentUsedEntries
has been added to show the total number of database entries used.
The groups, ciscoLwappAAAMIBRev1ConfigGroup and
ciscoLwappAAAMIBDBEntriesGroup have been added.
ciscoLwappAAAMIBCompliance has been deprecated by
ciscoLwappAAAMIBComplianceRev1."
REVISION "200611210000Z"
DESCRIPTION
"Initial version of this MIB module."
::= { ciscoMgmt 598 }
ciscoLwappAAAMIBNotifs OBJECT IDENTIFIER
::= { ciscoLwappAAAMIB 0 }
ciscoLwappAAAMIBObjects OBJECT IDENTIFIER
::= { ciscoLwappAAAMIB 1 }
ciscoLwappAAAMIBConform OBJECT IDENTIFIER
::= { ciscoLwappAAAMIB 2 }
claConfigObjects OBJECT IDENTIFIER
::= { ciscoLwappAAAMIBObjects 1 }
claStatusObjects OBJECT IDENTIFIER
::= { ciscoLwappAAAMIBObjects 2 }
-- ********************************************************************
-- * Configuration for parameters
-- ********************************************************************
--
-- ********************************************************************
-- * Priority Table
-- ********************************************************************
claPriorityTable OBJECT-TYPE
SYNTAX SEQUENCE OF ClaPriorityEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table contains entries for AAA authentication
methods configured in the controller. At startup,
all the entries in this table are set up by the central
controller. A management application can later change
the priority order using the claPriorityOrder."
::= { claConfigObjects 1 }
claPriorityEntry OBJECT-TYPE
SYNTAX ClaPriorityEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"A conceptual row in claPriorityTable. There is an entry in
this table for each AAA authentication method available at the
agent, as identified by a value of claPriorityAuth."
INDEX { claPriorityAuth }
::= { claPriorityTable 1 }
ClaPriorityEntry ::= SEQUENCE {
claPriorityAuth INTEGER,
claPriorityOrder Unsigned32
}
claPriorityAuth OBJECT-TYPE
SYNTAX INTEGER {
local(1),
radius(2),
tacacsplus(3)
}
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This object represents the authentication method used to
authenticate users.
local - indicates that local password is used
for authentication.
radius - indicates that RADIUS method is used for
authentication.
tacacsplus - indicates that TACACS method is used for
authentication."
::= { claPriorityEntry 1 }
claPriorityOrder OBJECT-TYPE
SYNTAX Unsigned32 (0..10)
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This is the priority order of an authentication method to
be used in user authentication for a session. At start up,
the agent assigns the value of this object. Later this can
be changed by the management station. This object reflects
the relative priority of the authentication method denoted
by claPriorityAuth with respect to already configured
authentication methods.
The zero value indicates that the priority is not set and that
the authentication methods are applied in ascending order.
Each object must contain a unique value for claPriorityOrder
or zero. In the case when a priority is set for a value that
is already used by existing object the existing object's
claPriorityOrder with be swapped."
::= { claPriorityEntry 2 }
-- ********************************************************************
-- TACACS+ AAA Servers
-- ********************************************************************
claTacacsServerTable OBJECT-TYPE
SYNTAX SEQUENCE OF ClaTacacsServerEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table represents the information about configuring
the Accounting, Authentication and Authorization servers.
The creation of a new row in claTacacsServerTable is
through an explicit network management action
results in creation of an entry in this table.
Similarly, deletion of a row in claTacacsServerTable
through user action causes the deletion of corresponding
row in this table. The claTacacsServerType defines the
server type being used and the claTacacsServerPriority
defines the priority the server accessed within a given
type."
::= { claConfigObjects 2 }
claTacacsServerEntry OBJECT-TYPE
SYNTAX ClaTacacsServerEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry in this table provides information about
the server that is configured for AAA. Each entry is
uniquely identified by the server type and priority
that server is accessed."
INDEX {
claTacacsServerType,
claTacacsServerPriority
}
::= { claTacacsServerTable 1 }
ClaTacacsServerEntry ::= SEQUENCE {
claTacacsServerType INTEGER,
claTacacsServerPriority Unsigned32,
claTacacsServerAddressType InetAddressType,
claTacacsServerAddress InetAddress,
claTacacsServerPortNum InetPortNumber,
claTacacsServerEnabled TruthValue,
claTacacsServerSecretType CLSecKeyFormat,
claTacacsServerSecret DisplayString,
claTacacsServerTimeout Unsigned32,
claTacacsServerStorageType StorageType,
claTacacsServerRowStatus RowStatus
}
claTacacsServerType OBJECT-TYPE
SYNTAX INTEGER {
authentication(1),
authorization(2),
accounting(3)
}
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This attribute identifies the type of the server
being configured."
::= { claTacacsServerEntry 1 }
claTacacsServerPriority OBJECT-TYPE
SYNTAX Unsigned32
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"The priority value for this entry. This value
determines the unique priority for this entry.
The priority value for this entry determines the
order in which the server configured in this entry
is accessed. The lower the number, the higher the
priority. For example if there are 2 entries with
priority 1 and 2 respectively, the controller will
try the server with priority 1 before it tries
the server with priority 2."
::= { claTacacsServerEntry 2 }
claTacacsServerAddressType OBJECT-TYPE
SYNTAX InetAddressType
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"This object represents the type of the network
address made available through claTacacsServerAddress.
This object must be set to a valid value before
setting the row to 'active'."
::= { claTacacsServerEntry 3 }
claTacacsServerAddress OBJECT-TYPE
SYNTAX InetAddress
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"This object represents the address of the AAA server.
The type of the address stored in this object is
determined by the claTacacsServerAddressType object.
This object must be set to a valid value before
setting the row to 'active'."
::= { claTacacsServerEntry 4 }
claTacacsServerPortNum OBJECT-TYPE
SYNTAX InetPortNumber
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The port number for this server. This object must be
set to a valid value before setting the row to
'active'."
::= { claTacacsServerEntry 5 }
claTacacsServerEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"When set to true the server state is enabled,
otherwise the state is disabled."
DEFVAL { true }
::= { claTacacsServerEntry 6 }
claTacacsServerSecretType OBJECT-TYPE
SYNTAX CLSecKeyFormat
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The claTacacsServerSecret value is set based on this
type. When reading this object, the value 'default'
is always returned. This object must be set to a valid
value before setting the row to 'active'."
::= { claTacacsServerEntry 7 }
claTacacsServerSecret OBJECT-TYPE
SYNTAX DisplayString
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The key configured for this server. For get operation
this always returns a string with asterisks. This object
must be set to a valid value before setting the row to
'active'. This object can be modified when a row is in
the 'active' state."
::= { claTacacsServerEntry 8 }
claTacacsServerTimeout OBJECT-TYPE
SYNTAX Unsigned32 (5..30)
UNITS "seconds"
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The number of seconds between retransmissions. This
object can be modified when a row is in the 'active'
state."
DEFVAL { 5 }
::= { claTacacsServerEntry 9 }
claTacacsServerStorageType OBJECT-TYPE
SYNTAX StorageType
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"The storage type for this conceptual row. Conceptual
rows having the value 'permanent' need not allow
write-access to any columnar objects in the row."
DEFVAL { nonVolatile }
::= { claTacacsServerEntry 10 }
claTacacsServerRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"Used to add or delete an entry in this table.
The required parameters for this entry are
claTacacsServerAddress, claTacacsServerAddressType,
claTacacsServerPortNum, claTacacsServerSecret and
claTacacsServerSecretType should be provided.
When a row is in 'active' state, some objects
in this table can be modified as described in each
individual object's description."
::= { claTacacsServerEntry 11 }
-- ********************************************************************
-- AAA WLAN Table
-- ********************************************************************
claWlanTable OBJECT-TYPE
SYNTAX SEQUENCE OF ClaWlanEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"AAA table corresponding to a WLAN. When WLAN is added a
new entry gets added to this table. The entry is removed
when the WLAN is removed."
::= { claConfigObjects 3 }
claWlanEntry OBJECT-TYPE
SYNTAX ClaWlanEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry in this table provides AAA information for
a WLAN."
INDEX { cLWlanIndex }
::= { claWlanTable 1 }
ClaWlanEntry ::= SEQUENCE {
claWlanAcctServerEnabled TruthValue,
claWlanAuthServerEnabled TruthValue
}
claWlanAcctServerEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Status to indicate whether the account server
is enabled(true) or disabled(false) for this WLAN."
DEFVAL { true }
::= { claWlanEntry 1 }
claWlanAuthServerEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object represents the status whether the authentication
server is enabled(true) or disabled(false) for this WLAN."
DEFVAL { true }
::= { claWlanEntry 2 }
-- *******************************************************************
-- * Users Database
-- *******************************************************************
claSaveUserData OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to save the guest user config to NVRAM.
Setting to the value of 'true' would save the data.
Setting to the value of 'false' would have no implications
here."
DEFVAL { true }
::= { claConfigObjects 9 }
-- *******************************************************************
-- * RADIUS web auth and Fallback params.
-- *******************************************************************
claWebRadiusAuthentication OBJECT-TYPE
SYNTAX INTEGER {
pap(1),
chap(2),
md5-chap(3)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to configure the Web RADIUS Authentication
parameters on the WLC.
PAP (1) - Configure Web RADIUS Authentication in PAP mode.
CHAP (2) - Configure Web RADIUS Authentication in CHAP mode.
MD5-CHAP (3) - Configure Web RADIUS Authentication in MD5-CHAP mode."
DEFVAL { pap }
::= { claConfigObjects 10 }
claRadiusFallbackMode OBJECT-TYPE
SYNTAX INTEGER {
off(1),
passive(2),
active(3)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to configure the RADIUS Fallback Test mode
on the WLC. Following are the configurable options:
off (1) - Disables RADIUS server fallback test.
passive (2) - Sets server status based on last transaction.
active (3) - Sends probes to dead servers to test status."
DEFVAL { off }
::= { claConfigObjects 11 }
claRadiusFallbackUsername OBJECT-TYPE
SYNTAX SnmpAdminString
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to configure the RADIUS Fallback Test
username to be sent in dead server probes"
::= { claConfigObjects 12 }
claRadiusFallbackInterval OBJECT-TYPE
SYNTAX TimeInterval (180..3600)
UNITS "seconds"
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object is used to configure the probe interval (when
claRadiusFallbackMode is in active mode) or inactive time
(when claRadiusFallbackMode is in passive mode)"
DEFVAL { 300 }
::= { claConfigObjects 13 }
claRadiusAuthMacDelimiter OBJECT-TYPE
SYNTAX INTEGER {
noDelimiter(1),
colon(2),
hyphen(3),
singleHyphen(4)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The delimiter to be used for RADIUS authentication servers.
The possible values allowed are -
no delimiter (1) - as in xxxxxxxxxxxx.
colon (2) - as in xx:xx:xx:xx:xx:xx.
hyphen (3) - as in xx-xx-xx-xx-xx-xx.
single hyphen (4) - as in xxxxxx-xxxxxx."
DEFVAL { hyphen }
::= { claConfigObjects 14 }
claRadiusAcctMacDelimiter OBJECT-TYPE
SYNTAX INTEGER {
noDelimiter(1),
colon(2),
hyphen(3),
singleHyphen(4)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The delimiter to be used for RADIUS accounting servers.
The possible values allowed are -
no delimiter (1) - as in xxxxxxxxxxxx.
colon (2) - as in xx:xx:xx:xx:xx:xx.
hyphen (3) - as in xx-xx-xx-xx-xx-xx.
single hyphen (4) - as in xxxxxx-xxxxxx."
DEFVAL { hyphen }
::= { claConfigObjects 15 }
-- *******************************************************************
-- * AP Policy Configuration params.
-- *******************************************************************
claAcceptMICertificate OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object specifies if controller will accept
Manufactured Installed Certificate from the
access points as part of authorization."
DEFVAL { false }
::= { claConfigObjects 16 }
claAcceptLSCertificate OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object specifies if controller will accept
Local Significant Certificate from access points
as part of authorization."
DEFVAL { false }
::= { claConfigObjects 17 }
claAllowAuthorizeLscApAgainstAAA OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object specifies if access points to be authorized
using a AAA RADIUS server or local database.
If this object is false, the access points would be
authorized using a local database."
DEFVAL { false }
::= { claConfigObjects 18 }
-- ********************************************************************
-- * Status objects
-- ********************************************************************
claRadiusServerTable OBJECT-TYPE
SYNTAX SEQUENCE OF ClaRadiusServerEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This table represents the information about the
requests sent to the RADIUS servers.
When a new request gets sent to the RADIUS server
an entry gets added to this table. The agents
maintains a circular queue which automatically
gets overwritten once the queue is full."
::= { claStatusObjects 1 }
claRadiusServerEntry OBJECT-TYPE
SYNTAX ClaRadiusServerEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Each entry in this table provides information about
a request that is sent to a RADIUS server.
Each entry is uniquely identified by the
request identifier."
INDEX { claRadiusReqId }
::= { claRadiusServerTable 1 }
ClaRadiusServerEntry ::= SEQUENCE {
claRadiusReqId Unsigned32,
claRadiusAddressType InetAddressType,
claRadiusAddress InetAddress,
claRadiusPortNum InetPortNumber,
claRadiusWlanIdx Unsigned32,
claRadiusClientMacAddress MacAddress,
claRadiusUserName DisplayString
}
claRadiusReqId OBJECT-TYPE
SYNTAX Unsigned32
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"This object indicates the request identifier of the
request sent to the RADIUS server."
::= { claRadiusServerEntry 1 }
claRadiusAddressType OBJECT-TYPE
SYNTAX InetAddressType
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object indicates the address type for the RADIUS server."
::= { claRadiusServerEntry 2 }
claRadiusAddress OBJECT-TYPE
SYNTAX InetAddress
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object indicates the address of the RADIUS server."
::= { claRadiusServerEntry 3 }
claRadiusPortNum OBJECT-TYPE
SYNTAX InetPortNumber
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object indicates the port number for the RADIUS
server."
::= { claRadiusServerEntry 4 }
claRadiusWlanIdx OBJECT-TYPE
SYNTAX Unsigned32 (1..17)
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object indicates the WLAN index whether the RADIUS
server is activating and deactivating."
::= { claRadiusServerEntry 5 }
claRadiusClientMacAddress OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object indicates the client MAC address that sent the
request identified by the claRadiusReqId."
::= { claRadiusServerEntry 6 }
claRadiusUserName OBJECT-TYPE
SYNTAX DisplayString
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object identifies the user for whom the request
identified by the claRadiusReqId was sent."
::= { claRadiusServerEntry 7 }
claDBCurrentUsedEntries OBJECT-TYPE
SYNTAX Gauge32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object specifies the current database entries used.
This includes the number of users, mac filters
configured in the system."
::= { claStatusObjects 2 }
-- ********************************************************************
-- * NOTIFICATION Control objects
-- ********************************************************************
claRadiusServerGlobalActivatedEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The object to control the generation of
ciscoLwappAAARadiusServerGlobalActivated
notification.
A value of 'true' indicates that the agent generates
ciscoLwappAAARadiusServerGlobalActivated
notification.
A value of 'false' indicates that the agent doesn't
generate ciscoLwappAAARadiusServerGlobalActivated
notification."
DEFVAL { true }
::= { claConfigObjects 4 }
claRadiusServerGlobalDeactivatedEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The object to control the generation of
ciscoLwappAAARadiusServerGlobalDeactivated
notification.
A value of 'true' indicates that the agent generates
ciscoLwappAAARadiusServerGlobalDeactivated
notification.
A value of 'false' indicates that the agent doesn't
generate ciscoLwappAAARadiusServerGlobalDeactivated
notification."
DEFVAL { true }
::= { claConfigObjects 5 }
claRadiusServerWlanActivatedEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The object to control the generation of
ciscoLwappAAARadiusServerWlanActivated
notification.
A value of 'true' indicates that the agent generates
ciscoLwappAAARadiusServerWlanActivated
notification.
A value of 'false' indicates that the agent doesn't
generate ciscoLwappAAARadiusServerWlanActivated
notification."
DEFVAL { true }
::= { claConfigObjects 6 }
claRadiusServerWlanDeactivatedEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The object to control the generation of
ciscoLwappAAARadiusServerWlanDeactivated
notification.
A value of 'true' indicates that the agent generates
ciscoLwappAAARadiusServerWlanDeactivated
notification.
A value of 'false' indicates that the agent doesn't
generate ciscoLwappAAARadiusServerWlanDeactivated
notification."
DEFVAL { true }
::= { claConfigObjects 7 }
claRadiusReqTimedOutEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"The object to control the generation of
ciscoLwappAAARadiusReqTimedOut notification.
A value of 'true' indicates that the agent generates
ciscoLwappAAARadiusReqTimedOut notification.
A value of 'false' indicates that the agent doesn't
generate ciscoLwappAAARadiusReqTimedOut notification."
DEFVAL { true }
::= { claConfigObjects 8 }
-- ********************************************************************
-- * NOTIFICATION TYPE objects
-- ********************************************************************
ciscoLwappAAARadiusServerGlobalActivated NOTIFICATION-TYPE
OBJECTS {
claRadiusAddressType,
claRadiusAddress,
claRadiusPortNum
}
STATUS current
DESCRIPTION
"This notification is sent by the agent when the
controller detects that the RADIUS server is
activated in the global list. The RADIUS server
is identified by the address (claRadiusAddress)
and port number (claRadiusPortNum)."
::= { ciscoLwappAAAMIBNotifs 1 }
ciscoLwappAAARadiusServerGlobalDeactivated NOTIFICATION-TYPE
OBJECTS {
claRadiusAddressType,
claRadiusAddress,
claRadiusPortNum
}
STATUS current
DESCRIPTION
"This notification is sent by the agent when the
controller detects that the RADIUS server is
deactivated in the global list. The RADIUS server
is identified by the address (claRadiusAddress)
and port number (claRadiusPortNum)."
::= { ciscoLwappAAAMIBNotifs 2 }
ciscoLwappAAARadiusServerWlanActivated NOTIFICATION-TYPE
OBJECTS {
claRadiusAddressType,
claRadiusAddress,
claRadiusPortNum,
claRadiusWlanIdx
}
STATUS current
DESCRIPTION
"This notification is sent by the agent when the
controller detects that the RADIUS server is
activated on the WLAN. The RADIUS server
is identified by the address (claRadiusAddress)
and port number (claRadiusPortNum)."
::= { ciscoLwappAAAMIBNotifs 3 }
ciscoLwappAAARadiusServerWlanDeactivated NOTIFICATION-TYPE
OBJECTS {
claRadiusAddressType,
claRadiusAddress,
claRadiusPortNum,
claRadiusWlanIdx
}
STATUS current
DESCRIPTION
"This notification is sent by the agent when the
controller detects that the RADIUS server is
deactivated on the WLAN. The RADIUS server
is identified by the address (claRadiusAddress)
and port number (claRadiusPortNum)."
::= { ciscoLwappAAAMIBNotifs 4 }
ciscoLwappAAARadiusReqTimedOut NOTIFICATION-TYPE
OBJECTS {
claRadiusAddressType,
claRadiusAddress,
claRadiusPortNum,
claRadiusClientMacAddress,
claRadiusUserName
}
STATUS current
DESCRIPTION
"This notification is sent by the agent when the
controller detects that the RADIUS server failed
to respond to request from a client/user. The RADIUS
server is identified by the address (claRadiusAddress)
and port number (claRadiusPortNum)."
::= { ciscoLwappAAAMIBNotifs 5 }
-- ********************************************************************
ciscoLwappAAAMIBCompliances OBJECT IDENTIFIER
::= { ciscoLwappAAAMIBConform 1 }
ciscoLwappAAAMIBGroups OBJECT IDENTIFIER
::= { ciscoLwappAAAMIBConform 2 }
ciscoLwappAAAMIBCompliance MODULE-COMPLIANCE
STATUS deprecated
DESCRIPTION
"The compliance statement for the SNMP entities that
implement the ciscoLwappAAAMIB module."
MODULE -- this module
MANDATORY-GROUPS {
ciscoLwappAAAMIBConfigGroup,
ciscoLwappAAAMIBNotifsGroup,
ciscoLwappAAAMIBStatusObjsGroup
}
::= { ciscoLwappAAAMIBCompliances 1 }
ciscoLwappAAAMIBComplianceRev1 MODULE-COMPLIANCE
STATUS current
DESCRIPTION
"The compliance statement for the SNMP entities that
implement the ciscoLwappAAAMIB module."
MODULE -- this module
MANDATORY-GROUPS {
ciscoLwappAAAMIBConfigGroup,
ciscoLwappAAAMIBSaveUserConfigGroup,
ciscoLwappAAAMIBRadiusConfigGroup,
ciscoLwappAAAMIBAPPolicyConfigGroup,
ciscoLwappAAAMIBWlanAuthAccServerConfigGroup,
ciscoLwappAAAMIBNotifsGroup,
ciscoLwappAAAMIBStatusObjsGroup,
ciscoLwappAAAMIBDBEntriesGroup
}
::= { ciscoLwappAAAMIBCompliances 2 }
-- ********************************************************************
-- * Units of conformance
-- ********************************************************************
ciscoLwappAAAMIBConfigGroup OBJECT-GROUP
OBJECTS {
claPriorityOrder,
claTacacsServerAddressType,
claTacacsServerAddress,
claTacacsServerPortNum,
claTacacsServerEnabled,
claTacacsServerSecretType,
claTacacsServerSecret,
claTacacsServerTimeout,
claTacacsServerStorageType,
claTacacsServerRowStatus,
claRadiusServerGlobalActivatedEnabled,
claRadiusServerGlobalDeactivatedEnabled,
claRadiusServerWlanActivatedEnabled,
claRadiusServerWlanDeactivatedEnabled,
claRadiusReqTimedOutEnabled
}
STATUS current
DESCRIPTION
"This collection of objects specifies the required
parameters for AAA."
::= { ciscoLwappAAAMIBGroups 1 }
ciscoLwappAAAMIBSaveUserConfigGroup OBJECT-GROUP
OBJECTS { claSaveUserData }
STATUS current
DESCRIPTION
"These is the configuration parameter related to
guest user configuration saving."
::= { ciscoLwappAAAMIBGroups 2 }
ciscoLwappAAAMIBNotifsGroup NOTIFICATION-GROUP
NOTIFICATIONS {
ciscoLwappAAARadiusServerGlobalActivated,
ciscoLwappAAARadiusServerGlobalDeactivated,
ciscoLwappAAARadiusServerWlanActivated,
ciscoLwappAAARadiusServerWlanDeactivated,
ciscoLwappAAARadiusReqTimedOut
}
STATUS current
DESCRIPTION
"This collection of objects specifies the
notifications for AAA."
::= { ciscoLwappAAAMIBGroups 3 }
ciscoLwappAAAMIBStatusObjsGroup OBJECT-GROUP
OBJECTS {
claRadiusAddressType,
claRadiusAddress,
claRadiusPortNum,
claRadiusWlanIdx,
claRadiusClientMacAddress,
claRadiusUserName
}
STATUS current
DESCRIPTION
"This collection of objects represents the information
about the general status attributes for AAA."
::= { ciscoLwappAAAMIBGroups 4 }
ciscoLwappAAAMIBDBEntriesGroup OBJECT-GROUP
OBJECTS { claDBCurrentUsedEntries }
STATUS current
DESCRIPTION
"This is the additional object which represent
the information about the general status
attributes for AAA."
::= { ciscoLwappAAAMIBGroups 5 }
ciscoLwappAAAMIBRadiusConfigGroup OBJECT-GROUP
OBJECTS {
claWebRadiusAuthentication,
claRadiusFallbackMode,
claRadiusFallbackUsername,
claRadiusFallbackInterval,
claRadiusAuthMacDelimiter,
claRadiusAcctMacDelimiter
}
STATUS current
DESCRIPTION
"These are the RADIUS web authentication and
fallback related configuration parameters on the WLC."
::= { ciscoLwappAAAMIBGroups 6 }
ciscoLwappAAAMIBAPPolicyConfigGroup OBJECT-GROUP
OBJECTS {
claAcceptMICertificate,
claAcceptLSCertificate,
claAllowAuthorizeLscApAgainstAAA
}
STATUS current
DESCRIPTION
"These are the AP Policy related configuration
parameters on the WLC."
::= { ciscoLwappAAAMIBGroups 7 }
ciscoLwappAAAMIBWlanAuthAccServerConfigGroup OBJECT-GROUP
OBJECTS {
claWlanAuthServerEnabled,
claWlanAcctServerEnabled
}
STATUS current
DESCRIPTION
"These are the authentication and account server configuration
parameters per wlan."
::= { ciscoLwappAAAMIBGroups 8 }
END
Reference in New Issue View Git Blame Copy Permalink