| etsysMultiAuthSystemSupportedTypes |
.1.3.6.1.4.1.5624.1.2.46.1.1.1 |
|
This object specifies that authentication types that the
device supports. A bit will be set for each corresponding
type that is supported.
|
| etsysMultiAuthSystemMaxNumUsers |
.1.3.6.1.4.1.5624.1.2.46.1.1.2 |
|
The maximum number of users the can be actively
authenticated or have authentications in progress at one
time in the system.
|
| etsysMultiAuthSystemCurrentNumUsers |
.1.3.6.1.4.1.5624.1.2.46.1.1.3 |
|
The current number of users the are actively authenticated,
have authentications in progress, or the device is keeping
authentication termination information for in the system.
|
| etsysMultiAuthSystemMode |
.1.3.6.1.4.1.5624.1.2.46.1.1.4 |
|
The value strictIeee8021x(1) will cause the device to
authenticate in strict adherence to IEEE Std. 802.1X-2001.
In this mode no other authentication mechanisms will be active.
While in this mode, changes may be made to other objects in the
MIB, but they will have no effect on the operation of the device
until such time as the system mode is changed to etsysMultiAuth(2).
A set of this object to a value of etsysMultiAuth(2) will cause
the device to authenticate using multiple authenticators
simultaneously.
|
| etsysMultiAuthSystemDefaultPrecedence |
.1.3.6.1.4.1.5624.1.2.46.1.1.5 |
|
The precedence that authentication results will be applied
to network traffic by default. This object will have a size
equal to the number of enumerations specified by the
EtsysMultiAuthTypes textual convention.
|
| etsysMultiAuthSystemAdminPrecedence |
.1.3.6.1.4.1.5624.1.2.46.1.1.6 |
|
This object allows one to modify the default precedence by
which authentication results will be applied to network traffic.
Sets to this object are not required to specify all of the types
that the device supports. If less types are specified than are
supported, then all types that were not specified will be given
an operational precedence based on that type's default precedence
relative to the last type specified. For example, if the default
precedence is '030102'H and the object is set to '02'H then
operational precedence would be '020301'H.
A set to this object of a zero length octet string will clear
the administrative precedence. In this case the operational
precedence would be equal to the default precedence.
|
| etsysMultiAuthSystemOperPrecedence |
.1.3.6.1.4.1.5624.1.2.46.1.1.7 |
|
This object returns the operational precedence of authentication
types as they will be applied to network traffic. The value
returned by this object is the calculated result of the
etsysMultiAuthSystemDefaultPrecedence and
etsysMultiAuthSystemAdminPrecedence objects. This object will
have a size equal to the number of enumerations specified by the
EtsysMultiAuthTypes textual convention.
|
| etsysMultiAuthPortEntry |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1 |
|
An entry containing per port authentication data.
Only interfaces that are able to authenticate users are
represented in this table.
|
| etsysMultiAuthStationEntry |
.1.3.6.1.4.1.5624.1.2.46.1.3.1.1 |
|
An entry containing authentication information on a per station,
per port basis. Only interfaces that are able to authenticate
users are represented in this table.
|
| etsysMultiAuthSessionStationEntry |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1 |
|
An entry containing authentication information on a per station,
per port, per authentication agent type basis. Only interfaces
that are able to authenticate users are represented in this table.
|
| etsysMultiAuthSessionPortEntry |
.1.3.6.1.4.1.5624.1.2.46.1.4.2.1 |
|
An entry containing authentication information on a per port,
per station, per authentication agent type basis. Only interfaces
that are able to authenticate users are represented in this table.
|
| etsysMultiAuthPortMode |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1.1 |
|
This object specifies the authorization mode to use for
packets received on this interface.
A value of forceUnauthorized(1) indicates that the interface
is always unauthenticated.
A value of forceAuthorized(2) indicates that users on this port
will always be considered to be authenticated.
A value of authOptional(3) indicates that authentication is
optional on this interface. Packets received from
unauthenticated users on the interface will be processed using
the static configuration of the interface. Users may promote
the policy applied to their traffic by actively authenticating
on this interface.
A value of authRequired(4) indicates that all packets received on
the interface will be dropped until authentication succeeds. Some
authentication types, such as PWA, will not be fully functional in
this mode of operation.
|
| etsysMultiAuthPortMaxNumUsers |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1.2 |
|
The maximum number of users that can be actively
authenticated or have authentications in progress at one
time on this interface.
|
| etsysMultiAuthPortNumUsersAllowed |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1.3 |
|
The user configured number of users that can be actively
authenticated or have authentications in progress at one
time on this interface. This object has a default value
equal to the value of etsysMultiAuthPortMaxNumUsers for this
interface. If the value set to this object is less than its
current value, it will have the same effect as setting the
etsysMultiAuthPortClearUsers object to a value of true(1).
|
| etsysMultiAuthPortCurrentNumUsers |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1.4 |
|
The current number of users that are actively
authenticated or have authentications in progress at one
time on this interface. By definition this value can not
exceed the value specified by etsysMultiAuthPortMaxNumUsers
for the same interface.
|
| etsysMultiAuthPortClearUsers |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1.5 |
|
Setting this object to a value of true(1) will cause
all users that are currently authenticated or that
have authentications in progress on this interface to become
unauthenticated. This will cause any such entries with matching
ifIndex values in the etsysMultiAuthSessionStationTable tables to
change their authorization status to authTerminated(5).
Setting this object to a value of false(2) has no effect. This
object will always return a value of false(2).
|
| etsysMultiAuthPortTrapEnable |
.1.3.6.1.4.1.5624.1.2.46.1.2.1.1.6 |
|
This object allows for the enabling or disabling of each
trap on a per interface basis. Setting a given bit to a value
of 1 allows traps of that type to be sent for events on that
interface. Setting a given bit to a value of 0 disallows traps
of that type to be sent for events on that interface. The
individual bits correlate to specific traps as follows:
BIT NOTIFICATION
----------------------------------------------------------------
authSuccessTrap(0) etsysMultiAuthSuccess
authFailedTrap(1) etsysMultiAuthFailed
authTerminatedTrap(2) etsysMultiAuthTerminated
maxNumUsersReachedTrap(3) etsysMultiAuthMaxNumUsersReached
|
| etsysMultiAuthStationAddrType |
.1.3.6.1.4.1.5624.1.2.46.1.3.1.1.1 |
|
The type of station represented by etsysMultiAuthStationAddr.
|
| etsysMultiAuthStationAddr |
.1.3.6.1.4.1.5624.1.2.46.1.3.1.1.2 |
|
The station address for the authenticated user.
|
| etsysMultiAuthStationClearUsers |
.1.3.6.1.4.1.5624.1.2.46.1.3.1.1.3 |
|
Setting this object to a value of true(1) will cause
any users with the specified station address that are currently
authenticated or that have authentications in progress to become
unauthenticated. This will cause any entries with matching
etsysMultiAuthStationAddr values in the
etsysMultiAuthSessionStationTable tables to change their
authorization status to authTerminated(5).
Setting this object to a value of false(2) has no effect. This
object will always return a value of false(2).
|
| etsysMultiAuthSessionAgentType |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.1 |
|
The type of authentication agent for this session.
|
| etsysMultiAuthSessionStationAuthStatus |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.2 |
|
The status of authentication for this session.
|
| etsysMultiAuthSessionAuthAttemptTime |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.3 |
|
The value of sysUpTime when this session last attempted
authorization. For entries that have a value of
authInProgress(3) for etsysMultiAuthSessionAuthStatus
this object may return a value of zero.
|
| etsysMultiAuthSessionAuthServerType |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.4 |
|
The type of authentication server used to authenticate this
session.
|
| etsysMultiAuthSessionAuthServerAddrType |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.5 |
|
The type of data returned by etsysMultiAuthSessionAuthServerAddr.
|
| etsysMultiAuthSessionAuthServerAddr |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.6 |
|
The network address of the authentication server for this
session.
|
| etsysMultiAuthSessionPolicyIndex |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.7 |
|
The Policy Profile Index returned from the authentication
server for this session.
The value of zero indicates that no policy will be applied
for this session. If the etsysMultiAuthSessionAuthStatus
object returns a value of authSuccess(1), then a value of
zero is the result of the policy not being configured on the
authorization server. For all other values of
etsysMultiAuthSessionAuthStatus a value of zero for this object
is the result of authorization not succeeding or not having
completed.
All values other than zero are valid Policy Profile
Indexes that specify the policy profile the user will receive on
this interface. If a given user has been authenticated by
multiple authentication types on the same interface the policy
that is applied to the user's packets is determined by the
precedence of the agents as specified by
etsysMultiAuthSystemOperPrecedence. These indexes are suitable
for indexing in the ENTERASYS-POLICY-PROFILE-MIB.
|
| etsysMultiAuthSessionIsApplied |
.1.3.6.1.4.1.5624.1.2.46.1.4.1.1.8 |
|
This object indicates whether this entry and the
policy index contained within it are actively being applied
to traffic matching the interface and station address of this
entry. A value of true(1) indicates that this entry is being
applied. A value of false(2) indicates that the entry is not
being applied. Only one authentication type per
interface station address ordered pair may be applied at a
single time. The operational precedence of the various
authentication types determines which if any type will be
applied.
|
| etsysMultiAuthSessionPortAuthStatus |
.1.3.6.1.4.1.5624.1.2.46.1.4.2.1.1 |
|
The status of authentication for this session.
|
| etsysMultiAuthSuccess |
.1.3.6.1.4.1.5624.1.2.46.1.0.1 |
|
An etsysMultiAuthSuccess trap signifies that the SNMP entity,
acting in an agent role, has successfully authenticated a
station on one of its interfaces. The included objects
of etsysMultiAuthStationAddrType and etsysMultiAuthStationAddr
uniquely identify the station that has been authenticated.
The interface that the station was authenticated on is
specified by the ifIndex object, and the type of authentication
used is to authenticate the station is specified by the
etsysMultiAuthSessionAgentType object. This trap will only
be generated on interfaces that are in the authOptional(3)
or authRequired(4) state.
|
| etsysMultiAuthFailed |
.1.3.6.1.4.1.5624.1.2.46.1.0.2 |
|
An etsysMultiAuthFailed trap signifies that the SNMP entity,
acting in an agent role, has identified a station that attempted
and subsequently failed to authenticate on one of its interfaces.
The included objects of etsysMultiAuthStationAddrType and
etsysMultiAuthStationAddr uniquely identify the station that
attempted to authenticate. The interface that the station
attempted to authenticate on is specified by the ifIndex object,
and the type of authentication attempted is specified by the
etsysMultiAuthSessionAgentType object. This trap will only
be generated on interfaces that are in the authOptional(3)
or authRequired(4) state.
|
| etsysMultiAuthTerminated |
.1.3.6.1.4.1.5624.1.2.46.1.0.3 |
|
An etsysMultiAuthTerminated trap signifies that the SNMP entity,
acting in an agent role, has terminated the authentication of a
station on one of its interfaces. The included objects
of etsysMultiAuthStationAddrType and etsysMultiAuthStationAddr
uniquely identify the station for which authentication was
terminated. The interface that the station was previously
authenticated on is specified by the ifIndex object, and the
type of authentication that the station was terminated for is
specified by the etsysMultiAuthSessionAgentType object. This
trap will only be generated on interfaces that are in the
authOptional(3) or authRequired(4) state.
|
| etsysMultiAuthMaxNumUsersReached |
.1.3.6.1.4.1.5624.1.2.46.1.0.4 |
|
An etsysMultiAuthMaxNumUsersReached trap signifies that the SNMP
entity, acting in an agent role, has an interface where
subsequent to a successful authentication, the number of current
sessions on the interface equals the maximum number of sessions
allowed for that interface. The interface that the maximum
number of sessions has been reached is specified by the ifIndex
object.
|
