blob: 8f4cb0cba7046a6b269a44a806a30353496bfab9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
|
# -*- text -*-
# Copyright (C) 2019 The FreeRADIUS Server project and contributors
# This work is licensed under CC-BY version 4.0 https://creativecommons.org/licenses/by/4.0
#
# Sonicwall Firewall dictionary
#
# $Id$
#
VENDOR SonicWall 8741
# Backwards compatibility.
BEGIN-VENDOR SonicWall
ATTRIBUTE SS3-Firewall-User-Privilege 1 integer
# New names.
ATTRIBUTE SonicWall-User-Privilege 1 integer
VALUE SonicWall-User-Privilege Remote-Access 1 # deprecated
VALUE SonicWall-User-Privilege Bypass-Filters 2
VALUE SonicWall-User-Privilege VPN-Client-Access 3 # standard
VALUE SonicWall-User-Privilege Access-To-VPN 4 # standard
VALUE SonicWall-User-Privilege Limited-Management 5
VALUE SonicWall-User-Privilege L2TP-Client-Access 6 # standard
VALUE SonicWall-User-Privilege Wireless-Guest 7 # standard
VALUE SonicWall-User-Privilege Wireless-Add-ACL 8
VALUE SonicWall-User-Privilege Internet-Access 9 # standard
# Those values indicated as "standard" are applicable only on a SonicWall
# firewall running standard firmware and not on one running enhanced firmware.
#
# This attribute is to use in place of SonicWall-User-Privilege with RADIUS
# servers that allow only one instance of a Vendor-Specific attribute to be
# set (such as the ACE Server from RSA). Note that it is commented out in this
# file because it is not needed in any servers that support multiple VSA's.
#
# The value of this attribute is a text string giving a comma-separated list
# of one or more privileges, each corresponding to a value of the
# SonicWall-User-Privilege attribute above (and note that some are applicable
# only on a SonicWall firewall running standard firmware as indicated above):
# "BF,VC,VA,LM,LA,WG,WA,IA"
# "RA" for "Remote-Access" is now deprecated.
# ATTRIBUTE SonicWall-User-Privileges 2 string SonicWall
# Multiple of these can be set for a user, each specifying the name of a
# user group to which that user has membership. Note that this can
# alternatively be achieved by use of the Filter-Id attribute.
# This is applicable only on a SonicWall firewall running enhanced firmware.
#
ATTRIBUTE SonicWall-User-Group 3 string
# This attribute is to use in place of SonicWall-User-Group with RADIUS
# servers that allow only one instance of a Vendor-Specific attribute to be
# set (such as the ACE Server from RSA). Note that it is commented out in this
# file because it is not needed in any servers that support multiple VSA's.
#
# The value of this attribute is a text string giving a comma-separated list
# of the names of one or more user groups to which that user has membership.
# This is applicable only on a SonicWall firewall running enhanced firmware.
#
# ATTRIBUTE SonicWall-User-Groups 4 string SonicWall.
END-VENDOR SonicWall
|
