Worldwide [change] |Account |Register |About Cisco
Guest

Hierarchical Navigation

Cisco Access Registrar

Adding Multiple Cisco AV-Pairs to a User Profile in Access Registrar

Downloads

Document ID: 13835


Contents

Introduction
Prerequisites
      Requirements
      Components Used
      Conventions
Procedure
NetPro Discussion Forums - Featured Conversations
Related Information

Introduction

Different vendors have extended the standard attribute value pairs (AV-pairs) to satisfy specific needs. The AV-pairs introduced by Cisco are collectively called Vendor Specific Attributes, one of which is called Cisco AV-pair.

This document explains how to add multiple Cisco AV-pairs, or any multi-valued attribute, to a user profile.

Prerequisites

Requirements

There are no specific requirements for this document.

Components Used

The information in this document is based on these software and hardware versions:

  • Solaris 8

  • Access Registrar 3.0R8

The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.

Conventions

For more information on document conventions, refer to the Cisco Technical Tips Conventions.

Procedure

Cisco AV-pairs, or multi-valued attributes, cannot be added one at a time. If added one at a time, only the last AV-pair, or attribute remains because it overwrites the others.

The correct syntax to use is:

set Cisco-Avpair "vpdn:l2tp-tunnel-password=XYZ" "vpdn:tunnel-type=l2tp" 
"vpdn:tunnel-id=tunnel23" "vpdn:ip-addresses=10.10.10.1"

Note: Double quotes are not absolutely needed unless the value has a space in it. In this case, double quotes are not needed. The entire command has to be entered on one line. It has been wrapped to the second line in this document for spatial reasons.

This is an example of how to perform the steps in aregcmd: 

--> cd /Radius/Profiles/default-PPP-users/Attributes/

[ //localhost/Radius/Profiles/default-PPP-users/Attributes ]
Ascend-Idle-Limit = 1800
Framed-Compression = "VJ TCP/IP header compression"
Framed-MTU = 1500
Framed-Protocol = PPP
Framed-Routing = None
Service-Type = Framed

!--- This command is brought down to a second line
!--- for spatial reasons.  Keep this command on one line when you
!--- enter it.


--> set Cisco-Avpair "vpdn:l2tp-tunnel-password=XYZ" "vpdn:tunnel-type=l2tp" 
"vpdn:tunnel-id=tunnel23" "vpdn:ip-addresses=10.10.10.1"


!--- This command is brought down to a second line
!--- for spatial reasons.  Keep this command on one line when you
!--- enter it.

Set Cisco-Avpair vpdn:l2tp-tunnel-password=XYZ vpdn:tunnel-type=l2tp 
vpdn:tunnel-id=tunnel23 vpdn:ip-addresses=10.10.10.1

--> ls

[ //localhost/Radius/Profiles/default-PPP-users/Attributes ]
Ascend-Idle-Limit = 1800
Cisco-Avpair = vpdn:l2tp-tunnel-password=XYZ
Cisco-Avpair = vpdn:tunnel-type=l2tp
Cisco-Avpair = vpdn:tunnel-id=tunnel23
Cisco-Avpair = vpdn:ip-addresses=10.10.10.1

!--- All av-pairs are successfully added.

Framed-Compression = "VJ TCP/IP header compression"
Framed-MTU = 1500
Framed-Protocol = PPP
Framed-Routing = None
Service-Type = Framed

NetPro Discussion Forums - Featured Conversations

Networking Professionals Connection is a forum for networking professionals to share questions, suggestions, and information about networking solutions, products, and technologies. The featured links are some of the most recent conversations available in this technology.
NetPro Discussion Forums - Featured Conversations for Security
Security: Intrusion Detection [Systems]
Security: AAA
Security: General
Security: Firewalling

Related Information

Updated: Jan 19, 2006Document ID: 13835