ENTERASYS-MULTI-AUTH-MIB device MIB details by Enterasys Networks
ENTERASYS-MULTI-AUTH-MIB file content
The SNMP protocol is used to for conveying information and commands between agents and managing entities. SNMP uses the User Datagram Protocol (UDP) as the transport protocol for passing data between managers and agents. The reasons for using UDP for SNMP are, firstly it has low overheads in comparison to TCP, which uses a 3-way hand shake for connection. Secondly, in congested networks, SNMP over TCP is a bad idea because TCP in order to maintain reliability will flood the network with retransmissions.
Management information (MIB) is represented as a collection of managed objects. These objects together form a virtual information base called MIB. An agent may implement many MIBs, but all agents must implement a particular MIB called MIB-II [16]. This standard defines variables for things such as interface statistics (interface speeds, MTU, octets sent, octets received, etc.) as well as various other things pertaining to the system itself (system location, system contact, etc.). The main goal of MIB-II is to provide general TCP/IP management information.
Use ActiveXperts Network Monitor 2024 to import vendor-specific MIB files, inclusing ENTERASYS-MULTI-AUTH-MIB.
| Vendor: | Enterasys Networks |
|---|---|
| Mib: | ENTERASYS-MULTI-AUTH-MIB [download] [view objects] |
| Tool: | ActiveXperts Network Monitor 2024 [download] (ships with advanced SNMP/MIB tools) |
ENTERASYS-MULTI-AUTH-MIB DEFINITIONS ::= BEGIN -- enterasys-multi-auth-mib.txt -- -- Part Number: -- -- -- This module provides authoritative definitions for Enterasys -- Networks' simultaneous multiple authentication functionality. -- -- This module will be extended, as needed. -- Enterasys Networks reserves the right to make changes in this -- specification and other information contained in this document -- without prior notice. The reader should consult Enterasys Networks -- to determine whether any such changes have been made. -- -- In no event shall Enterasys Networks be liable for any incidental, -- indirect, special, or consequential damages whatsoever (including -- but not limited to lost profits) arising out of or related to this -- document or the information contained in it, even if Enterasys -- Networks has been advised of, known, or should have known, the -- possibility of such damages. -- -- Enterasys Networks grants vendors, end-users, and other interested -- parties a non-exclusive license to use this Specification in -- connection with the management of Enterasys Networks products. -- Copyright March 2004 Enterasys Networks, Inc. IMPORTS MODULE-IDENTITY, OBJECT-TYPE, NOTIFICATION-TYPE FROM SNMPv2-SMI Unsigned32, Integer32, Gauge32 FROM SNMPv2-SMI TEXTUAL-CONVENTION, TruthValue, TimeStamp FROM SNMPv2-TC MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP FROM SNMPv2-CONF ifIndex FROM IF-MIB InetAddressType, InetAddress FROM INET-ADDRESS-MIB StationAddressType, StationAddress FROM ENTERASYS-UPN-TC-MIB etsysModules FROM ENTERASYS-MIB-NAMES; etsysMultiAuthMIB MODULE-IDENTITY LAST-UPDATED "200403101356Z" -- Wed Mar 10 13:56 GMT 2004 ORGANIZATION "Enterasys Networks, Inc." CONTACT-INFO "Postal: Enterasys Networks 50 Minuteman Rd. Andover, MA 01810-1008 USA Phone: +1 978 684 1000 E-mail: support@enterasys.com WWW: http://www.enterasys.com" DESCRIPTION "This MIB module defines a portion of the SNMP MIB under the Enterasys Networks enterprise OID pertaining to configuration of multiple authentication mechanisms to be run simultaneously on a device." REVISION "200403101356Z" -- Wed Mar 10 13:56 GMT 2004 DESCRIPTION "The initial version of this MIB module." ::= { etsysModules 46 } -- Textual Conventions EtsysMultiAuthTypes ::= TEXTUAL-CONVENTION STATUS current DESCRIPTION "This convention enumerates the authentication types supported by Enterasys Networks' devices." SYNTAX INTEGER { ieee8021x(1), -- IEEE 802.1X Port-Based Network -- Access Control pwa(2), -- Enterasys Port Web Authentication macAuth(3) -- Enterasys Mac Authentication } EtsysMultiAuthTypePrecedence ::= TEXTUAL-CONVENTION DISPLAY-HINT "1d " STATUS current DESCRIPTION "The precedence by which authentication results will be applied to network traffic. This object will have a maximum size equal to the number of enumerations specified by the EtsysMultiAuthTypes textual convention. Each octet in this object represents a specific authentication type. The first octet contains the authentication type with the highest precedence, the second octet contains the type of the next highest precedence, and so forth. For example, a precedence from highest to lowest of ieee8021x(1), macAuth(3), pwa(2) would be represented as '010302'H." SYNTAX OCTET STRING (SIZE (0..32)) EtsysMultiAuthStatus ::= TEXTUAL-CONVENTION STATUS current DESCRIPTION "The status of authentication for this session. A value of authSuccess(1) means authentication was attempted and succeeded. A value of authFailed(2) means authentication was attempted and failed for a reason other than communication timing out with the authorization server. A value of authInProgress(3) means that the authorization process has been started but has not completed yet. A value of authServerTimeout(4) means that the request to the authorization server for this session timed out without a reply from the server. A value of authTerminated(5) indicates that the session was active or in progress and was subsequently terminated." SYNTAX INTEGER { authSuccess(1), authFailed(2), authInProgress(3), authServerTimeout(4), authTerminated(5) } -- ------------------------------------------------------------- -- MIB Objects -- ------------------------------------------------------------- etsysMultiAuthObjects OBJECT IDENTIFIER ::= { etsysMultiAuthMIB 1 } etsysMultiAuthSystem OBJECT IDENTIFIER ::= { etsysMultiAuthObjects 1 } etsysMultiAuthPort OBJECT IDENTIFIER ::= { etsysMultiAuthObjects 2 } etsysMultiAuthStation OBJECT IDENTIFIER ::= { etsysMultiAuthObjects 3 } etsysMultiAuthSession OBJECT IDENTIFIER ::= { etsysMultiAuthObjects 4 } etsysMultiAuthNotification OBJECT IDENTIFIER ::= { etsysMultiAuthObjects 0 } -- ------------------------------------------------------------- -- The Multiple Authentication System Group -- ------------------------------------------------------------- etsysMultiAuthSystemSupportedTypes OBJECT-TYPE SYNTAX BITS { ieee8021x(0), pwa(1), macAuth(2) } MAX-ACCESS read-only STATUS current DESCRIPTION "This object specifies that authentication types that the device supports. A bit will be set for each corresponding type that is supported." ::= { etsysMultiAuthSystem 1 } etsysMultiAuthSystemMaxNumUsers OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The maximum number of users the can be actively authenticated or have authentications in progress at one time in the system." ::= { etsysMultiAuthSystem 2 } etsysMultiAuthSystemCurrentNumUsers OBJECT-TYPE SYNTAX Gauge32 MAX-ACCESS read-only STATUS current DESCRIPTION "The current number of users the are actively authenticated, have authentications in progress, or the device is keeping authentication termination information for in the system." ::= { etsysMultiAuthSystem 3 } etsysMultiAuthSystemMode OBJECT-TYPE SYNTAX INTEGER { strictIeee8021x(1), etsysMultiAuth(2) } MAX-ACCESS read-write STATUS current DESCRIPTION "The value strictIeee8021x(1) will cause the device to authenticate in strict adherence to IEEE Std. 802.1X-2001. In this mode no other authentication mechanisms will be active. While in this mode, changes may be made to other objects in the MIB, but they will have no effect on the operation of the device until such time as the system mode is changed to etsysMultiAuth(2). A set of this object to a value of etsysMultiAuth(2) will cause the device to authenticate using multiple authenticators simultaneously." REFERENCE "IEEE Std. 802.1X-2001" DEFVAL { strictIeee8021x } ::= { etsysMultiAuthSystem 4 } etsysMultiAuthSystemDefaultPrecedence OBJECT-TYPE SYNTAX EtsysMultiAuthTypePrecedence MAX-ACCESS read-only STATUS current DESCRIPTION "The precedence that authentication results will be applied to network traffic by default. This object will have a size equal to the number of enumerations specified by the EtsysMultiAuthTypes textual convention." DEFVAL { '030102'H } ::= { etsysMultiAuthSystem 5 } etsysMultiAuthSystemAdminPrecedence OBJECT-TYPE SYNTAX EtsysMultiAuthTypePrecedence MAX-ACCESS read-write STATUS current DESCRIPTION "This object allows one to modify the default precedence by which authentication results will be applied to network traffic. Sets to this object are not required to specify all of the types that the device supports. If less types are specified than are supported, then all types that were not specified will be given an operational precedence based on that type's default precedence relative to the last type specified. For example, if the default precedence is '030102'H and the object is set to '02'H then operational precedence would be '020301'H. A set to this object of a zero length octet string will clear the administrative precedence. In this case the operational precedence would be equal to the default precedence." DEFVAL { ''H } ::= { etsysMultiAuthSystem 6 } etsysMultiAuthSystemOperPrecedence OBJECT-TYPE SYNTAX EtsysMultiAuthTypePrecedence MAX-ACCESS read-only STATUS current DESCRIPTION "This object returns the operational precedence of authentication types as they will be applied to network traffic. The value returned by this object is the calculated result of the etsysMultiAuthSystemDefaultPrecedence and etsysMultiAuthSystemAdminPrecedence objects. This object will have a size equal to the number of enumerations specified by the EtsysMultiAuthTypes textual convention." ::= { etsysMultiAuthSystem 7 } -- ------------------------------------------------------------- -- The Multiple Authentication Port Group -- ------------------------------------------------------------- etsysMultiAuthPortTable OBJECT-TYPE SYNTAX SEQUENCE OF EtsysMultiAuthPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table of per port information and configuration for user authentication." ::= { etsysMultiAuthPort 1 } etsysMultiAuthPortEntry OBJECT-TYPE SYNTAX EtsysMultiAuthPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry containing per port authentication data. Only interfaces that are able to authenticate users are represented in this table." INDEX { ifIndex } ::= { etsysMultiAuthPortTable 1 } EtsysMultiAuthPortEntry ::= SEQUENCE { etsysMultiAuthPortMode INTEGER, etsysMultiAuthPortMaxNumUsers Unsigned32, etsysMultiAuthPortNumUsersAllowed Unsigned32, etsysMultiAuthPortCurrentNumUsers Gauge32, etsysMultiAuthPortClearUsers TruthValue, etsysMultiAuthPortTrapEnable BITS } etsysMultiAuthPortMode OBJECT-TYPE SYNTAX INTEGER { forceUnauthorized(1), forceAuthorized(2), authOptional(3), authRequired(4) } MAX-ACCESS read-write STATUS current DESCRIPTION "This object specifies the authorization mode to use for packets received on this interface. A value of forceUnauthorized(1) indicates that the interface is always unauthenticated. A value of forceAuthorized(2) indicates that users on this port will always be considered to be authenticated. A value of authOptional(3) indicates that authentication is optional on this interface. Packets received from unauthenticated users on the interface will be processed using the static configuration of the interface. Users may promote the policy applied to their traffic by actively authenticating on this interface. A value of authRequired(4) indicates that all packets received on the interface will be dropped until authentication succeeds. Some authentication types, such as PWA, will not be fully functional in this mode of operation." ::= { etsysMultiAuthPortEntry 1 } etsysMultiAuthPortMaxNumUsers OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-only STATUS current DESCRIPTION "The maximum number of users that can be actively authenticated or have authentications in progress at one time on this interface." ::= { etsysMultiAuthPortEntry 2 } etsysMultiAuthPortNumUsersAllowed OBJECT-TYPE SYNTAX Unsigned32 MAX-ACCESS read-write STATUS current DESCRIPTION "The user configured number of users that can be actively authenticated or have authentications in progress at one time on this interface. This object has a default value equal to the value of etsysMultiAuthPortMaxNumUsers for this interface. If the value set to this object is less than its current value, it will have the same effect as setting the etsysMultiAuthPortClearUsers object to a value of true(1)." ::= { etsysMultiAuthPortEntry 3 } etsysMultiAuthPortCurrentNumUsers OBJECT-TYPE SYNTAX Gauge32 MAX-ACCESS read-only STATUS current DESCRIPTION "The current number of users that are actively authenticated or have authentications in progress at one time on this interface. By definition this value can not exceed the value specified by etsysMultiAuthPortMaxNumUsers for the same interface." ::= { etsysMultiAuthPortEntry 4 } etsysMultiAuthPortClearUsers OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-write STATUS current DESCRIPTION "Setting this object to a value of true(1) will cause all users that are currently authenticated or that have authentications in progress on this interface to become unauthenticated. This will cause any such entries with matching ifIndex values in the etsysMultiAuthSessionStationTable tables to change their authorization status to authTerminated(5). Setting this object to a value of false(2) has no effect. This object will always return a value of false(2)." DEFVAL { false } ::= { etsysMultiAuthPortEntry 5 } etsysMultiAuthPortTrapEnable OBJECT-TYPE SYNTAX BITS { authSuccessTrap(0), authFailedTrap(1), authTerminatedTrap(2), maxNumUsersReachedTrap(3) } MAX-ACCESS read-write STATUS current DESCRIPTION "This object allows for the enabling or disabling of each trap on a per interface basis. Setting a given bit to a value of 1 allows traps of that type to be sent for events on that interface. Setting a given bit to a value of 0 disallows traps of that type to be sent for events on that interface. The individual bits correlate to specific traps as follows: BIT NOTIFICATION ---------------------------------------------------------------- authSuccessTrap(0) etsysMultiAuthSuccess authFailedTrap(1) etsysMultiAuthFailed authTerminatedTrap(2) etsysMultiAuthTerminated maxNumUsersReachedTrap(3) etsysMultiAuthMaxNumUsersReached " DEFVAL { { } } ::= { etsysMultiAuthPortEntry 6 } -- ------------------------------------------------------------- -- The Multiple Authentication Station Group -- ------------------------------------------------------------- etsysMultiAuthStationTable OBJECT-TYPE SYNTAX SEQUENCE OF EtsysMultiAuthStationEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table of station configuration on specific interfaces." ::= { etsysMultiAuthStation 1 } etsysMultiAuthStationEntry OBJECT-TYPE SYNTAX EtsysMultiAuthStationEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry containing authentication information on a per station, per port basis. Only interfaces that are able to authenticate users are represented in this table." INDEX { etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, ifIndex } ::= { etsysMultiAuthStationTable 1 } EtsysMultiAuthStationEntry ::= SEQUENCE { etsysMultiAuthStationAddrType StationAddressType, etsysMultiAuthStationAddr StationAddress, etsysMultiAuthStationClearUsers TruthValue } etsysMultiAuthStationAddrType OBJECT-TYPE SYNTAX StationAddressType MAX-ACCESS accessible-for-notify STATUS current DESCRIPTION "The type of station represented by etsysMultiAuthStationAddr." ::= { etsysMultiAuthStationEntry 1 } etsysMultiAuthStationAddr OBJECT-TYPE SYNTAX StationAddress MAX-ACCESS accessible-for-notify STATUS current DESCRIPTION "The station address for the authenticated user." ::= { etsysMultiAuthStationEntry 2 } etsysMultiAuthStationClearUsers OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-write STATUS current DESCRIPTION "Setting this object to a value of true(1) will cause any users with the specified station address that are currently authenticated or that have authentications in progress to become unauthenticated. This will cause any entries with matching etsysMultiAuthStationAddr values in the etsysMultiAuthSessionStationTable tables to change their authorization status to authTerminated(5). Setting this object to a value of false(2) has no effect. This object will always return a value of false(2)." DEFVAL { false } ::= { etsysMultiAuthStationEntry 3 } -- ------------------------------------------------------------- -- The Multiple Authentication Session Group -- ------------------------------------------------------------- etsysMultiAuthSessionStationTable OBJECT-TYPE SYNTAX SEQUENCE OF EtsysMultiAuthSessionStationEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table of session information and configuration for user authentication. Entries in this table represent users in various stages of authentication. Entries that do not have a etsysMultiAuthSessionStationAuthStatus value of authSuccess(1) or authInProgress(3) MAY be removed by the agent as required in order to free resources for new user authentications." ::= { etsysMultiAuthSession 1 } etsysMultiAuthSessionStationEntry OBJECT-TYPE SYNTAX EtsysMultiAuthSessionStationEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry containing authentication information on a per station, per port, per authentication agent type basis. Only interfaces that are able to authenticate users are represented in this table." INDEX { etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, ifIndex, etsysMultiAuthSessionAgentType } ::= { etsysMultiAuthSessionStationTable 1 } EtsysMultiAuthSessionStationEntry ::= SEQUENCE { etsysMultiAuthSessionAgentType EtsysMultiAuthTypes, etsysMultiAuthSessionStationAuthStatus EtsysMultiAuthStatus, etsysMultiAuthSessionAuthAttemptTime TimeStamp, etsysMultiAuthSessionAuthServerType INTEGER, etsysMultiAuthSessionAuthServerAddrType InetAddressType, etsysMultiAuthSessionAuthServerAddr InetAddress, etsysMultiAuthSessionPolicyIndex Integer32, etsysMultiAuthSessionIsApplied TruthValue } etsysMultiAuthSessionAgentType OBJECT-TYPE SYNTAX EtsysMultiAuthTypes MAX-ACCESS accessible-for-notify STATUS current DESCRIPTION "The type of authentication agent for this session." ::= { etsysMultiAuthSessionStationEntry 1 } etsysMultiAuthSessionStationAuthStatus OBJECT-TYPE SYNTAX EtsysMultiAuthStatus MAX-ACCESS read-only STATUS current DESCRIPTION "The status of authentication for this session." ::= { etsysMultiAuthSessionStationEntry 2 } etsysMultiAuthSessionAuthAttemptTime OBJECT-TYPE SYNTAX TimeStamp MAX-ACCESS read-only STATUS current DESCRIPTION "The value of sysUpTime when this session last attempted authorization. For entries that have a value of authInProgress(3) for etsysMultiAuthSessionAuthStatus this object may return a value of zero." ::= { etsysMultiAuthSessionStationEntry 3 } etsysMultiAuthSessionAuthServerType OBJECT-TYPE SYNTAX INTEGER { radius(1) } MAX-ACCESS read-only STATUS current DESCRIPTION "The type of authentication server used to authenticate this session." ::= { etsysMultiAuthSessionStationEntry 4 } etsysMultiAuthSessionAuthServerAddrType OBJECT-TYPE SYNTAX InetAddressType MAX-ACCESS read-only STATUS current DESCRIPTION "The type of data returned by etsysMultiAuthSessionAuthServerAddr." ::= { etsysMultiAuthSessionStationEntry 5 } etsysMultiAuthSessionAuthServerAddr OBJECT-TYPE SYNTAX InetAddress MAX-ACCESS read-only STATUS current DESCRIPTION "The network address of the authentication server for this session." ::= { etsysMultiAuthSessionStationEntry 6 } etsysMultiAuthSessionPolicyIndex OBJECT-TYPE SYNTAX Integer32 (0|1..65535) MAX-ACCESS read-only STATUS current DESCRIPTION "The Policy Profile Index returned from the authentication server for this session. The value of zero indicates that no policy will be applied for this session. If the etsysMultiAuthSessionAuthStatus object returns a value of authSuccess(1), then a value of zero is the result of the policy not being configured on the authorization server. For all other values of etsysMultiAuthSessionAuthStatus a value of zero for this object is the result of authorization not succeeding or not having completed. All values other than zero are valid Policy Profile Indexes that specify the policy profile the user will receive on this interface. If a given user has been authenticated by multiple authentication types on the same interface the policy that is applied to the user's packets is determined by the precedence of the agents as specified by etsysMultiAuthSystemOperPrecedence. These indexes are suitable for indexing in the ENTERASYS-POLICY-PROFILE-MIB." ::= { etsysMultiAuthSessionStationEntry 7 } etsysMultiAuthSessionIsApplied OBJECT-TYPE SYNTAX TruthValue MAX-ACCESS read-only STATUS current DESCRIPTION "This object indicates whether this entry and the policy index contained within it are actively being applied to traffic matching the interface and station address of this entry. A value of true(1) indicates that this entry is being applied. A value of false(2) indicates that the entry is not being applied. Only one authentication type per interface station address ordered pair may be applied at a single time. The operational precedence of the various authentication types determines which if any type will be applied." ::= { etsysMultiAuthSessionStationEntry 8 } etsysMultiAuthSessionPortTable OBJECT-TYPE SYNTAX SEQUENCE OF EtsysMultiAuthSessionPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "A table of session information and configuration for user authentication. This table represents the information specified in the etsysMultiAuthSessionStationTable with alternate indexing for faster lookups of data on per port basis." ::= { etsysMultiAuthSession 2 } etsysMultiAuthSessionPortEntry OBJECT-TYPE SYNTAX EtsysMultiAuthSessionPortEntry MAX-ACCESS not-accessible STATUS current DESCRIPTION "An entry containing authentication information on a per port, per station, per authentication agent type basis. Only interfaces that are able to authenticate users are represented in this table." INDEX { ifIndex, etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, etsysMultiAuthSessionAgentType } ::= { etsysMultiAuthSessionPortTable 1 } EtsysMultiAuthSessionPortEntry ::= SEQUENCE { etsysMultiAuthSessionPortAuthStatus EtsysMultiAuthStatus } etsysMultiAuthSessionPortAuthStatus OBJECT-TYPE SYNTAX EtsysMultiAuthStatus MAX-ACCESS read-only STATUS current DESCRIPTION "The status of authentication for this session." ::= { etsysMultiAuthSessionPortEntry 1 } -- ------------------------------------------------------------- -- The Multiple Authentication Notification Group -- ------------------------------------------------------------- etsysMultiAuthSuccess NOTIFICATION-TYPE OBJECTS { etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, ifIndex, etsysMultiAuthSessionAgentType } STATUS current DESCRIPTION "An etsysMultiAuthSuccess trap signifies that the SNMP entity, acting in an agent role, has successfully authenticated a station on one of its interfaces. The included objects of etsysMultiAuthStationAddrType and etsysMultiAuthStationAddr uniquely identify the station that has been authenticated. The interface that the station was authenticated on is specified by the ifIndex object, and the type of authentication used is to authenticate the station is specified by the etsysMultiAuthSessionAgentType object. This trap will only be generated on interfaces that are in the authOptional(3) or authRequired(4) state." ::= { etsysMultiAuthNotification 1 } etsysMultiAuthFailed NOTIFICATION-TYPE OBJECTS { etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, ifIndex, etsysMultiAuthSessionAgentType } STATUS current DESCRIPTION "An etsysMultiAuthFailed trap signifies that the SNMP entity, acting in an agent role, has identified a station that attempted and subsequently failed to authenticate on one of its interfaces. The included objects of etsysMultiAuthStationAddrType and etsysMultiAuthStationAddr uniquely identify the station that attempted to authenticate. The interface that the station attempted to authenticate on is specified by the ifIndex object, and the type of authentication attempted is specified by the etsysMultiAuthSessionAgentType object. This trap will only be generated on interfaces that are in the authOptional(3) or authRequired(4) state." ::= { etsysMultiAuthNotification 2 } etsysMultiAuthTerminated NOTIFICATION-TYPE OBJECTS { etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, ifIndex, etsysMultiAuthSessionAgentType } STATUS current DESCRIPTION "An etsysMultiAuthTerminated trap signifies that the SNMP entity, acting in an agent role, has terminated the authentication of a station on one of its interfaces. The included objects of etsysMultiAuthStationAddrType and etsysMultiAuthStationAddr uniquely identify the station for which authentication was terminated. The interface that the station was previously authenticated on is specified by the ifIndex object, and the type of authentication that the station was terminated for is specified by the etsysMultiAuthSessionAgentType object. This trap will only be generated on interfaces that are in the authOptional(3) or authRequired(4) state." ::= { etsysMultiAuthNotification 3 } etsysMultiAuthMaxNumUsersReached NOTIFICATION-TYPE OBJECTS { ifIndex } STATUS current DESCRIPTION "An etsysMultiAuthMaxNumUsersReached trap signifies that the SNMP entity, acting in an agent role, has an interface where subsequent to a successful authentication, the number of current sessions on the interface equals the maximum number of sessions allowed for that interface. The interface that the maximum number of sessions has been reached is specified by the ifIndex object." ::= { etsysMultiAuthNotification 4 } -- ------------------------------------------------------------- -- Conformance Information -- ------------------------------------------------------------- etsysMultiAuthConformance OBJECT IDENTIFIER ::= { etsysMultiAuthMIB 2 } etsysMultiAuthGroups OBJECT IDENTIFIER ::= { etsysMultiAuthConformance 1 } etsysMultiAuthCompliances OBJECT IDENTIFIER ::= { etsysMultiAuthConformance 2 } -- ------------------------------------------------------------- -- Units of conformance -- ------------------------------------------------------------- etsysMultiAuthSystemGroup OBJECT-GROUP OBJECTS { etsysMultiAuthSystemSupportedTypes, etsysMultiAuthSystemMaxNumUsers, etsysMultiAuthSystemCurrentNumUsers, etsysMultiAuthSystemMode, etsysMultiAuthSystemDefaultPrecedence, etsysMultiAuthSystemAdminPrecedence, etsysMultiAuthSystemOperPrecedence } STATUS current DESCRIPTION "The system group for all devices supporting Multiple Authentication." ::= { etsysMultiAuthGroups 1 } etsysMultiAuthPortBaseGroup OBJECT-GROUP OBJECTS { etsysMultiAuthPortMode, etsysMultiAuthPortMaxNumUsers, etsysMultiAuthPortNumUsersAllowed, etsysMultiAuthPortCurrentNumUsers, etsysMultiAuthPortClearUsers } STATUS current DESCRIPTION "The base level port group for all devices supporting Multiple Authentication." ::= { etsysMultiAuthGroups 2 } etsysMultiAuthPortTrapGroup OBJECT-GROUP OBJECTS { etsysMultiAuthPortTrapEnable } STATUS current DESCRIPTION "This group of objects for all devices supporting per interface SNMP notifications." ::= { etsysMultiAuthGroups 3 } etsysMultiAuthStationGroup OBJECT-GROUP OBJECTS { etsysMultiAuthStationAddrType, etsysMultiAuthStationAddr, etsysMultiAuthStationClearUsers } STATUS current DESCRIPTION "The station group for all devices supporting Multiple Authentication." ::= { etsysMultiAuthGroups 4 } etsysMultiAuthSessionGroup OBJECT-GROUP OBJECTS { etsysMultiAuthSessionAgentType, etsysMultiAuthSessionStationAuthStatus, etsysMultiAuthSessionAuthAttemptTime, etsysMultiAuthSessionAuthServerType, etsysMultiAuthSessionAuthServerAddrType, etsysMultiAuthSessionAuthServerAddr, etsysMultiAuthSessionPolicyIndex, etsysMultiAuthSessionIsApplied, etsysMultiAuthSessionPortAuthStatus } STATUS current DESCRIPTION "The session group for all devices supporting Multiple Authentication." ::= { etsysMultiAuthGroups 5 } etsysMultiAuthNotificationPortGroup NOTIFICATION-GROUP NOTIFICATIONS { etsysMultiAuthSuccess, etsysMultiAuthFailed, etsysMultiAuthTerminated, etsysMultiAuthMaxNumUsersReached } STATUS current DESCRIPTION "The group of per interface notifications for Multiple Authentication." ::= { etsysMultiAuthGroups 6 } -- ------------------------------------------------------------- -- Compliance statements -- ------------------------------------------------------------- etsysMultiAuthCompliance MODULE-COMPLIANCE STATUS current DESCRIPTION "The compliance statement for devices that support Multiple Authentication." MODULE MANDATORY-GROUPS { etsysMultiAuthSystemGroup, etsysMultiAuthPortBaseGroup, etsysMultiAuthStationGroup, etsysMultiAuthSessionGroup } GROUP etsysMultiAuthPortTrapGroup DESCRIPTION "This group is mandatory for all devices that support per interface notifications for Multiple Authentication." GROUP etsysMultiAuthNotificationPortGroup DESCRIPTION "This group is mandatory for all devices that support per interface notifications for Multiple Authentication." OBJECT etsysMultiAuthSystemAdminPrecedence MIN-ACCESS read-only DESCRIPTION "Write access is not required." OBJECT etsysMultiAuthPortNumUsersAllowed MIN-ACCESS read-only DESCRIPTION "Write access is not required." OBJECT etsysMultiAuthPortClearUsers MIN-ACCESS read-only DESCRIPTION "Write access is not required." OBJECT etsysMultiAuthStationClearUsers MIN-ACCESS read-only DESCRIPTION "Write access is not required." ::= { etsysMultiAuthCompliances 1 } END