-- This module defines enterprise MIBs for Authentication
-- Configuration
--
-- Copyright (c) 1999-2004, Juniper Networks, Inc.
-- All rights reserved.NETSCREEN-SET-AUTH-MIB DEFINITIONS::=BEGINIMPORTS--PSIM(Modif) netscreenSettingMibModulenetscreenSettingMibModule, netscreenSetting
FROM NETSCREEN-SMI
Integer32,MODULE-IDENTITY,OBJECT-TYPEFROM SNMPv2-SMI
DisplayStringFROM SNMPv2-TC
;netscreenSetAuthMibModule MODULE-IDENTITYLAST-UPDATED"200411102022Z"-- Nov 10, 2004ORGANIZATION"Juniper Networks, Inc."CONTACT-INFO"Customer Support
1194 North Mathilda Avenue
Sunnyvale, California 94089-1206
USA
Tel: 1-800-638-8296
E-mail: customerservice@juniper.net
HTTP://www.juniper.net"DESCRIPTION"This module defines the object that are used to monitor all
the configuration info"REVISION"200405030000Z"-- May 03, 2004DESCRIPTION"Added nsSetAuthCfgEntry attributes"REVISION"200411102022Z"-- Nov 10, 2004DESCRIPTION
"Modified copyright and contact information"REVISION"200403030000Z"-- March 03, 2004DESCRIPTION"Converted to SMIv2 by Longview Software"REVISION"200311100000Z"-- November 10, 2003DESCRIPTION"Correct spelling mistake"REVISION"200204270000Z"-- April 27, 2002DESCRIPTION"More than one auth setting allowed in one system"REVISION"200105270000Z"-- May 27, 2001DESCRIPTION"Creation Date"::={ netscreenSettingMibModule 2}
NsSetAuthCfgEntry ::=SEQUENCE{
nsSetAuthCfgIdx Integer32,
nsSetAuthCfgVsys Integer32,
nsSetAuthCfgName DisplayString,
nsSetAuthCfgPrimary DisplayString,
nsSetAuthCfgBackup1 DisplayString,
nsSetAuthCfgBackup2 DisplayString,
nsSetAuthCfgConnIdleTimeout Integer32,
nsSetAuthCfgAuthAccount INTEGER,
nsSetAuthCfgIkeAccount INTEGER,
nsSetAuthCfgL2tpAccount INTEGER,
nsSetAuthCfgAdminAccount INTEGER,
nsSetAuthCfgXauthAccount INTEGER,
nsSetAuthCfgMethod INTEGER,
nsSetAuthCfgPort Integer32,
nsSetAuthCfgSecCliRetry Integer32,
nsSetAuthCfgSecCliTimeout Integer32,
nsSetAuthCfgSecEncType INTEGER,
nsSetAuthCfgSecUseDuress INTEGER,
nsSetAuthCfgLDAPCni DisplayString,
nsSetAuthCfgLDAPDn DisplayString,
nsSetAuthCfgSepChar DisplayString,
nsSetAuthCfgSepNumber Integer32,
nsSetAuthCfgRevInterval Integer32,
nsSetAuthCfgRadRetries Integer32,
nsSetAuthCfgEnableStnID INTEGER,
nsSetAuthCfgDomainName DisplayString,
nsSetAuthCfgAcctSessIdLen Integer32,
nsSetAuthCfgRFC2138Compatibility INTEGER,
nsSetAuthCfgSourceIfName DisplayString,
nsSetAuthCfgAcctPort Integer32,
nsSetAuthCfgAcctListActn INTEGER,
nsSetAuthCfgSourceIfInfo Integer32}nsSetAuth OBJECTIDENTIFIER::={ netscreenSetting 2}nsSetAuthCfgTable OBJECT-TYPESYNTAXSEQUENCEOF NsSetAuthCfgEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"The authentication configuration of NetScreen device."::={ nsSetAuth 1}nsSetAuthCfgEntry OBJECT-TYPESYNTAX NsSetAuthCfgEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"NetScreen admin user authentication setting table."INDEX{ nsSetAuthCfgIdx }::={ nsSetAuthCfgTable 1}nsSetAuthCfgIdx OBJECT-TYPE
SYNTAXInteger32(0..2147483647)MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Authentication server config index."::={ nsSetAuthCfgEntry 1}nsSetAuthCfgVsys OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Virtural system the setting belongs to."::={ nsSetAuthCfgEntry 2}nsSetAuthCfgName OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Authentication server setting entry name."::={ nsSetAuthCfgEntry 3}
nsSetAuthCfgPrimary OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Primary authentication server IP or domain name."::={ nsSetAuthCfgEntry 4}nsSetAuthCfgBackup1 OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"First backup authentication server IP or domain name.It's
optional."::={ nsSetAuthCfgEntry 5}nsSetAuthCfgBackup2 OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-only
STATUScurrentDESCRIPTION"Secondary backup authentication server IP or domain name.It's
optional."::={ nsSetAuthCfgEntry 6}nsSetAuthCfgConnIdleTimeout OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"connection timeout threshold setting. 0 means no timeout
setting."::={ nsSetAuthCfgEntry 7}nsSetAuthCfgAuthAccount OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Allow authentication account."::={ nsSetAuthCfgEntry 8}nsSetAuthCfgIkeAccount OBJECT-TYPESYNTAXINTEGER{
no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Allow IKE account."::={ nsSetAuthCfgEntry 9}nsSetAuthCfgL2tpAccount OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Allow L2tp account."::={ nsSetAuthCfgEntry 10}nsSetAuthCfgAdminAccount OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}
MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Allow administration account."::={ nsSetAuthCfgEntry 11}nsSetAuthCfgXauthAccount OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Allow Xauth account."::={ nsSetAuthCfgEntry 12}nsSetAuthCfgMethod OBJECT-TYPESYNTAXINTEGER{build-in-user-db(0),radius-server(1),secureId-server(2),ldap-server(3)}MAX-ACCESSread-only
STATUScurrentDESCRIPTION"NetScreen device admin user authentication method."::={ nsSetAuthCfgEntry 13}nsSetAuthCfgPort OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Server listening port number."::={ nsSetAuthCfgEntry 14}nsSetAuthCfgSecCliRetry OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"SecureID client client retry times"::={ nsSetAuthCfgEntry 15}nsSetAuthCfgSecCliTimeout OBJECT-TYPESYNTAXInteger32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"SecureID client timeout threshold."::={ nsSetAuthCfgEntry 16}
nsSetAuthCfgSecEncType OBJECT-TYPESYNTAXINTEGER{sdi(0),des(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"SecureID traffic encryption type."::={ nsSetAuthCfgEntry 17}nsSetAuthCfgSecUseDuress OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Use duress in SecureID authentication."::={ nsSetAuthCfgEntry 18}nsSetAuthCfgLDAPCni OBJECT-TYPESYNTAXDisplayString(SIZE(0..2))
MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"LDAP server common name identifier"::={ nsSetAuthCfgEntry 19}nsSetAuthCfgLDAPDn OBJECT-TYPESYNTAXDisplayString(SIZE(0..32))MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"LDAP server distinguished name"::={ nsSetAuthCfgEntry 20}nsSetAuthCfgSepChar OBJECT-TYPESYNTAXDisplayString(SIZE(0..2))ACCESSread-onlySTATUSmandatoryDESCRIPTION"Seperator character for this entry"
::={ nsSetAuthCfgEntry 21}nsSetAuthCfgSepNumber OBJECT-TYPESYNTAXInteger32ACCESSread-onlySTATUSmandatoryDESCRIPTION"Seperator number for this entry"::={ nsSetAuthCfgEntry 22}nsSetAuthCfgRevInterval OBJECT-TYPESYNTAXInteger32ACCESSread-onlySTATUSmandatoryDESCRIPTION"Revert interval for this entry"::={ nsSetAuthCfgEntry 23}nsSetAuthCfgRadRetries OBJECT-TYPESYNTAXInteger32ACCESSread-onlySTATUSmandatoryDESCRIPTION"Radius retries for this entries"::={ nsSetAuthCfgEntry 24}nsSetAuthCfgEnableStnID OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}ACCESSread-onlySTATUSmandatoryDESCRIPTION"Enable/Disable call station ID for this entry."::={ nsSetAuthCfgEntry 25}nsSetAuthCfgDomainName OBJECT-TYPESYNTAXDisplayString(SIZE(0..255))ACCESSread-onlySTATUSmandatoryDESCRIPTION"Domain name for this entry"::={ nsSetAuthCfgEntry 26}nsSetAuthCfgAcctSessIdLen OBJECT-TYPESYNTAXInteger32ACCESSread-only
STATUSmandatoryDESCRIPTION"Acct session identifier length for this entry"::={ nsSetAuthCfgEntry 27}nsSetAuthCfgRFC2138Compatibility OBJECT-TYPESYNTAXINTEGER{no(0),yes(1)}ACCESSread-onlySTATUSmandatoryDESCRIPTION"Is RFC2138 compatible for this entry"::={ nsSetAuthCfgEntry 28}nsSetAuthCfgSourceIfName OBJECT-TYPESYNTAXDisplayString(SIZE(0..255))ACCESSread-onlySTATUSmandatoryDESCRIPTION"Source interface name for this entry"
::={ nsSetAuthCfgEntry 29}nsSetAuthCfgAcctPort OBJECT-TYPESYNTAXInteger32ACCESSread-onlySTATUSmandatoryDESCRIPTION"Radius accounting port for this entry"::={ nsSetAuthCfgEntry 30}nsSetAuthCfgAcctListActn OBJECT-TYPESYNTAXINTEGER{none(0),cleanup-sess(1)}ACCESSread-onlySTATUSmandatoryDESCRIPTION"Radius accounting action for this entry"::={ nsSetAuthCfgEntry 31}nsSetAuthCfgSourceIfInfo OBJECT-TYPESYNTAXInteger32ACCESSread-onlySTATUSmandatory
DESCRIPTION"Source interface info for this entry. Returns -1 if no interface is selected"::={ nsSetAuthCfgEntry 32}END