-- *****************************************************************************
-- Juniper-TACACS-Plus-Client-MIB
--
-- Juniper Networks Enterprise MIB
-- TACACS+ Client MIB
--
-- Copyright (c) 2002, 2004 Juniper Networks, Inc. All Rights Reserved.
-- *****************************************************************************Juniper-TACACS-Plus-Client-MIB DEFINITIONS::=BEGINIMPORTSMODULE-IDENTITY,OBJECT-TYPE,Counter32,IpAddress
FROM SNMPv2-SMI
TEXTUAL-CONVENTION,RowStatus,TruthValue,TimeStampFROM SNMPv2-TC
MODULE-COMPLIANCE,OBJECT-GROUPFROM SNMPv2-CONF
juniMibs
FROM Juniper-MIBs;juniTacacsPlusClientMIB MODULE-IDENTITYLAST-UPDATED"200403021731Z"-- 02-Mar-04 12:31 PM ESTORGANIZATION"Juniper Networks, Inc."CONTACT-INFO" Juniper Networks, Inc.
Postal: 10 Technology Park Drive
Westford, MA 01886-3146
USA
Tel: +1 978 589 5800
Email: mib@Juniper.net"DESCRIPTION"The Terminal Access Controller Access Control System Plus (TACACS+)
Client MIB for the Juniper Networks enterprise."-- Revision HistoryREVISION"200403021731Z"-- 02-Mar-04 12:31 PM EST - JUNOSe 5.3DESCRIPTION"Added juniTacacsPlusClientHostOrder to
juniTacacsPlusClientHostConfigTable."REVISION"200209162144Z"-- 16-Sep-02 05:44 PM EDT - JUNOSe 5.0DESCRIPTION"Replaced Unisphere names with Juniper names."REVISION"200207121349Z"-- 12-Jul-02 09:49 AM EDT - JUNOSe 4.1DESCRIPTION"Initial version of this MIB module."
::={ juniMibs 60}-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-- Textual conventions
-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++JuniKeyString ::=TEXTUAL-CONVENTIONSTATUScurrentDESCRIPTION"A string to keep a TACACS+ key. It may contain TAB character and/or
any character from 0x20 to 0x7e inclusive. Its lenght is limited to
100. For security reasons it always reads as an empty string."SYNTAXOCTETSTRING(SIZE(0..100))-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-- Managed objects
-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++juniTacacsPlusClientObjects OBJECTIDENTIFIER::={ juniTacacsPlusClientMIB 1}juniTacacsPlusClientCommonConfig OBJECTIDENTIFIER::={ juniTacacsPlusClientObjects 1}juniTacacsPlusClientHostConfig OBJECTIDENTIFIER::={ juniTacacsPlusClientObjects 2}juniTacacsPlusClientHostStats OBJECTIDENTIFIER::={ juniTacacsPlusClientObjects 3}-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-- Common parameters shared by all hosts
-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++juniTacacsPlusClientDirectedRequest OBJECT-TYPESYNTAXINTEGER{notRestrictedAndTruncated(1),disabled(2),notRestrictedAndNotTruncated(3),restrictedAndTruncated(4),restrictedAndNotTruncated(5)}MAX-ACCESSread-writeSTATUScurrentDESCRIPTION"This object represents directed-request option setting. In any of the
enabled enabled states user name entered as `user@host' will be sent to
specified host fot authentication. If `restricted' is in effect and the
specified host is not available client would not try to use other hosts,
if `truncated' is in effect, then `@host' part will be stripped before
submission for authentication."::={ juniTacacsPlusClientCommonConfig 1}juniTacacsPlusClientTimeout OBJECT-TYPESYNTAXINTEGER(0..255)MAX-ACCESSread-writeSTATUScurrentDESCRIPTION
"TACACS+ host response timeout in seconds. Value 0 means 'not
configured, it this case built-in internal timeout value will be used."::={ juniTacacsPlusClientCommonConfig 2}juniTacacsPlusClientKey OBJECT-TYPESYNTAX JuniKeyString
MAX-ACCESSread-writeSTATUScurrentDESCRIPTION"If the size is non-zero, packets passed between host and client will be
encrypted."::={ juniTacacsPlusClientCommonConfig 3}juniTacacsPlusClientSourceIp OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-writeSTATUScurrentDESCRIPTION"If the value is is not 0.0.0.0 client will use this address as a source
IP address for communication with servers. Changing this value would
not affect existing connections."::={ juniTacacsPlusClientCommonConfig 4}-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-- Per host parameters
-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++juniTacacsPlusClientHostConfigTable OBJECT-TYPESYNTAXSEQUENCEOF JuniTacacsPlusClientHostConfigEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"This table contains per host configuration parameters."
::={ juniTacacsPlusClientHostConfig 1}juniTacacsPlusClientHostConfigEntry OBJECT-TYPESYNTAX JuniTacacsPlusClientHostConfigEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"A TACACS+ host statistics table entry."INDEX{ juniTacacsPlusClientHostAddr }::={ juniTacacsPlusClientHostConfigTable 1}
JuniTacacsPlusClientHostConfigEntry ::=SEQUENCE{
juniTacacsPlusClientHostAddr IpAddress,
juniTacacsPlusClientHostPort INTEGER,
juniTacacsPlusClientHostPrimary TruthValue,
juniTacacsPlusClientHostSingleConnection TruthValue,
juniTacacsPlusClientHostTimeout INTEGER,
juniTacacsPlusClientHostKey JuniKeyString,
juniTacacsPlusClientHostStatus RowStatus,
juniTacacsPlusClientHostOrder INTEGER}juniTacacsPlusClientHostAddr OBJECT-TYPESYNTAXIpAddressMAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"The IP address of the host."::={ juniTacacsPlusClientHostConfigEntry 1}juniTacacsPlusClientHostPort OBJECT-TYPESYNTAXINTEGER(1..65535)MAX-ACCESSread-createSTATUScurrentDESCRIPTION"The TCP port of the host."DEFVAL{49}::={ juniTacacsPlusClientHostConfigEntry 2}juniTacacsPlusClientHostPrimary OBJECT-TYPESYNTAXTruthValueMAX-ACCESSread-createSTATUScurrentDESCRIPTION"Non-directed requests are submitted to the primary host first. There
is only one primary host in the table. So, setting this object to true,
will also change the value of this object in the current primary host.
If primary host is deleted or reset, system will assing new primary
host. When the first entry is created it becomes primary regardless of
the value of this object."DEFVAL{ false }::={ juniTacacsPlusClientHostConfigEntry 3}juniTacacsPlusClientHostSingleConnection OBJECT-TYPESYNTAXTruthValueMAX-ACCESSread-createSTATUScurrentDESCRIPTION"Traditionally TACACS+ client creates a new TCP connection for every
session. If this value is true then TACACS+ client will try to use
single connection if supported both by client implementation and by the
host."DEFVAL{ false }::={ juniTacacsPlusClientHostConfigEntry 4}juniTacacsPlusClientHostTimeout OBJECT-TYPESYNTAXINTEGER(0..255)MAX-ACCESSread-createSTATUScurrentDESCRIPTION"TACACS+ host response timeout in seconds. If the value is 0 then the
value of juniTacacsPlusClientTimeout will be used instead."::={ juniTacacsPlusClientHostConfigEntry 5}juniTacacsPlusClientHostKey OBJECT-TYPESYNTAX JuniKeyString
MAX-ACCESSread-createSTATUScurrentDESCRIPTION"If size is non-zero, packets passed between host and client will be
encrypted with the key, otherwise the value of juniTacacsPlusClientKey
will be used for the purpose."DEFVAL{""}::={ juniTacacsPlusClientHostConfigEntry 6}juniTacacsPlusClientHostStatus OBJECT-TYPESYNTAXRowStatusMAX-ACCESSread-createSTATUScurrentDESCRIPTION"Status object, only `createAndGo' and 'destroy' are supported."
::={ juniTacacsPlusClientHostConfigEntry 7}juniTacacsPlusClientHostOrder OBJECT-TYPESYNTAXINTEGERMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The search order of this TACACS+ host within all configured
TACACS+ hosts. This MIB object indicates the order in which a
TACACS+ request will be sent to the TACACS+ hosts until a response
is received. The primary host is always the first host to be
contacted. The remaining hosts will be contacted in the order
that they were created. Should the primary host be deleted,
the next host in the search order will become the primary host."::={ juniTacacsPlusClientHostConfigEntry 8}-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-- Host statistics
-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++juniTacacsPlusClientHostStatsTable OBJECT-TYPESYNTAXSEQUENCEOF JuniTacacsPlusClientHostStatsEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"This table contains per host statistics."::={ juniTacacsPlusClientHostStats 1}juniTacacsPlusClientHostStatsEntry OBJECT-TYPESYNTAX JuniTacacsPlusClientHostStatsEntry
MAX-ACCESSnot-accessibleSTATUScurrent
DESCRIPTION"A TACACS+ host statistics table entry."AUGMENTS{ juniTacacsPlusClientHostConfigEntry }::={ juniTacacsPlusClientHostStatsTable 1}
JuniTacacsPlusClientHostStatsEntry ::=SEQUENCE{
juniTacacsPlusClientHostAuthRequests Counter32,
juniTacacsPlusClientHostAuthReplies Counter32,
juniTacacsPlusClientHostAuthPending Counter32,
juniTacacsPlusClientHostAuthTimeouts Counter32,
juniTacacsPlusClientHostAuthorRequests Counter32,
juniTacacsPlusClientHostAuthorReplies Counter32,
juniTacacsPlusClientHostAuthorPending Counter32,
juniTacacsPlusClientHostAuthorTimeouts Counter32,
juniTacacsPlusClientHostAcctRequests Counter32,
juniTacacsPlusClientHostAcctReplies Counter32,
juniTacacsPlusClientHostAcctPending Counter32,
juniTacacsPlusClientHostAcctTimeouts Counter32,
juniTacacsPlusClientHostDiscontinuityTime TimeStamp}juniTacacsPlusClientHostAuthRequests OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of authentication requests sent to the host."
::={ juniTacacsPlusClientHostStatsEntry 1}juniTacacsPlusClientHostAuthReplies OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of authentication replies received from the host."::={ juniTacacsPlusClientHostStatsEntry 2}juniTacacsPlusClientHostAuthPending OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of expected but not received authentication replies from the
host."::={ juniTacacsPlusClientHostStatsEntry 3}juniTacacsPlusClientHostAuthTimeouts OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of authentication timeouts for the host."::={ juniTacacsPlusClientHostStatsEntry 4}juniTacacsPlusClientHostAuthorRequests OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION
"Number of authorization requests sent to the host."::={ juniTacacsPlusClientHostStatsEntry 5}juniTacacsPlusClientHostAuthorReplies OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of authorization replies received from the host."::={ juniTacacsPlusClientHostStatsEntry 6}juniTacacsPlusClientHostAuthorPending OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of expected but not received authorization replies from the
host."::={ juniTacacsPlusClientHostStatsEntry 7}juniTacacsPlusClientHostAuthorTimeouts OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of authorization timeouts for the host."::={ juniTacacsPlusClientHostStatsEntry 8}juniTacacsPlusClientHostAcctRequests OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrent
DESCRIPTION"Number of accounting requests sent to the host."::={ juniTacacsPlusClientHostStatsEntry 9}juniTacacsPlusClientHostAcctReplies OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of accounting replies received from the host."::={ juniTacacsPlusClientHostStatsEntry 10}juniTacacsPlusClientHostAcctPending OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of expected but not received accounting replies from the host."::={ juniTacacsPlusClientHostStatsEntry 11}juniTacacsPlusClientHostAcctTimeouts OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"Number of accounting timeouts for the host."::={ juniTacacsPlusClientHostStatsEntry 12}juniTacacsPlusClientHostDiscontinuityTime OBJECT-TYPESYNTAXTimeStampMAX-ACCESSread-onlySTATUScurrent
DESCRIPTION"The value of sysUpTime when corresponding juniTacacsPlusHostConfigEntry
was created, this object containg zero if host entry was created during
system initializatin."::={ juniTacacsPlusClientHostStatsEntry 13}-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
-- Conformance information
-- +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++juniTacacsPlusClientConformance OBJECTIDENTIFIER::={ juniTacacsPlusClientMIB 2}juniTacacsPlusClientCompliances OBJECTIDENTIFIER::={ juniTacacsPlusClientConformance 1}juniTacacsPlusClientGroups OBJECTIDENTIFIER::={ juniTacacsPlusClientConformance 2}juniTacacsPlusCompliance MODULE-COMPLIANCESTATUSobsoleteDESCRIPTION"Obsolete compliance statement for entities which implement the Juniper
TACACS+ Client MIB."MODULE-- this moduleMANDATORY-GROUPS{
juniTacacsPlusClientCommonGroup,
juniTacacsPlusClientHostConfigGroup,
juniTacacsPlusClientHostStatsGroup }::={ juniTacacsPlusClientCompliances 1}-- JUNOSe 4.1
juniTacacsPlusCompliance2 MODULE-COMPLIANCESTATUScurrentDESCRIPTION"The compliance statement for entities which implement the Juniper
TACACS+ Client MIB."MODULE-- this moduleMANDATORY-GROUPS{
juniTacacsPlusClientCommonGroup,
juniTacacsPlusClientHostConfigGroup2,
juniTacacsPlusClientHostStatsGroup }::={ juniTacacsPlusClientCompliances 2}-- JUNOSe 5.3--
-- units of conformance
--juniTacacsPlusClientCommonGroup OBJECT-GROUPOBJECTS{
juniTacacsPlusClientDirectedRequest,
juniTacacsPlusClientTimeout,
juniTacacsPlusClientKey,
juniTacacsPlusClientSourceIp }STATUScurrentDESCRIPTION"This group defines common configuration parameters for all hosts."::={ juniTacacsPlusClientGroups 1}juniTacacsPlusClientHostConfigGroup OBJECT-GROUPOBJECTS{
juniTacacsPlusClientHostPort,
juniTacacsPlusClientHostPrimary,
juniTacacsPlusClientHostSingleConnection,
juniTacacsPlusClientHostTimeout,
juniTacacsPlusClientHostKey,
juniTacacsPlusClientHostStatus }STATUSobsolete
DESCRIPTION"Obsolete group for defining per host configuration parameters."::={ juniTacacsPlusClientGroups 2}juniTacacsPlusClientHostStatsGroup OBJECT-GROUPOBJECTS{
juniTacacsPlusClientHostAuthRequests,
juniTacacsPlusClientHostAuthReplies,
juniTacacsPlusClientHostAuthPending,
juniTacacsPlusClientHostAuthTimeouts,
juniTacacsPlusClientHostAuthorRequests,
juniTacacsPlusClientHostAuthorReplies,
juniTacacsPlusClientHostAuthorPending,
juniTacacsPlusClientHostAuthorTimeouts,
juniTacacsPlusClientHostAcctRequests,
juniTacacsPlusClientHostAcctReplies,
juniTacacsPlusClientHostAcctPending,
juniTacacsPlusClientHostAcctTimeouts,
juniTacacsPlusClientHostDiscontinuityTime }STATUScurrentDESCRIPTION"This group defines statistics collected on per host basis."::={ juniTacacsPlusClientGroups 3}juniTacacsPlusClientHostConfigGroup2 OBJECT-GROUPOBJECTS{
juniTacacsPlusClientHostPort,
juniTacacsPlusClientHostPrimary,
juniTacacsPlusClientHostSingleConnection,
juniTacacsPlusClientHostTimeout,
juniTacacsPlusClientHostKey,
juniTacacsPlusClientHostStatus,
juniTacacsPlusClientHostOrder }STATUScurrent
DESCRIPTION"This group defines per host configuration parameters."::={ juniTacacsPlusClientGroups 4}END