Stimmen - 3, Durchschnittliche Bewertung: 5
(
)
)
|
Anleitung Zusammenfassung
ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Cisco Access Registrar 3.5 Concepts and Reference Guide Copyright © 2002, 2003, 2004 Cisco Systems, Inc. All rights reserved. CONTENTS CONTENTS About This Guide ix Obtaining Documentation ix World Wide Web ix Ordering Documentation x Documentation Feedback x Obtaining Technical Assistance x Cisco.com x Technical Assistance Center xi Contacting TAC by Using the Cisco TAC Website xi Contacting TAC by Telephone xi CHAPTER 1 Overview 1-1 RADIUS Protocol 1-1 Steps to Connection 1-2 Types of RADIUS Messages 1-3 Packet Contents 1-3 The Attribute Dictionary 1-4 Proxy Servers 1-4 Basic Authentication and Authorization 1-5 CHAPTER 2 Understanding Cisco Access Registrar 2-1 Cisco Access Registrar Hierarchy 2-1 UserLists and Groups 2-2 Profiles 2-2 Scripts 2-2 Services 2-2 Session Management Using Resource Managers 2-3 Cisco AR Directory Structure 2-4 Program Flow 2-4 Scripting Points 2-5 Client or NAS Scripting Points 2-5 Authentication and/or Authorization Scripting Points 2-6 Session Management 2-7 Failover by the NAS and Session Management 2-7 OL-2683-02 Cisco Access Registrar 3.5 Concepts and Reference Guide iii Contents Script Processing Hierarchy 2-8 Cross Server Session and Resource Management 2-9 Overview 2-9 Session-Service Service Step and Radius-Session Service 2-10 Configuring a Front Line Cisco Access Registrar 2-10 Configure Central AR 2-11 CHAPTER 3 Cisco Access Registrar Scripts 3-1 Using Cisco AR Scripts 3-1 ACMEOutgoingScript 3-1 AltigaIncomingScript 3-1 AltigaOutgoingScript 3-2 ANAAAOutgoing 3-2 AscendIncomingScript 3-2 AscendOutgoingScript 3-2 AuthorizePPP 3-2 AuthorizeService 3-2 AuthorizeSLIP 3-2 AuthorizeTelnet 3-3 CabletronIncoming 3-3 CabletronOutgoing 3-3 CiscoIncoming 3-3 CiscoOutgoing 3-3 CiscoWithODAPIncomingScript 3-3 ExecCLIDRule 3-3 ExecDNISRule 3-4 ExecFilterRule 3-4 ExecNASIPRule 3-4 ExecRealmRule 3-4 ExecTimeRule 3-4 LDAPOutage 3-5 MapSourceIPAddress 3-5 ParseAAARealm 3-5 ParseAAASRealm 3-5 ParseAARealm 3-5 ParseAASRealm 3-5 ParseProxyHints 3-6 ParseServiceAndAAARealmHints 3-6 ParseServiceAndAAASRealmHints 3-6 iv Cisco Access Registrar 3.5 Concepts and Reference Guide OL-2683-02 Contents ParseServiceAndAARealmHints 3-6 ParseServiceAndAASRealmHints 3-6 ParseServiceAndProxyHints 3-6 ParseServiceHints 3-7 ParseTranslationGroupsByCLID 3-7 ParseTranslationGroupsByDNIS 3-7 ParseTranslationGroupsByRealm 3-7 UseCLIDAsSessionKey 3-7 USRIncomingScript 3-7 USRIncomingScript-IgnoreAccountingSignature 3-7 USROutgoingScript 3-8 CHAPTER 4 Understanding Replication 4-1 Replication Overview 4-1 How Replication Works 4-2 Replication Data Flow 4-2 Master Server 4-2 Slave Server 4-3 Security 4-3 Replication Archive 4-3 Ensuring Data Integrity 4-3 Transaction Data Verification 4-4 Transaction Order 4-4 Automatic Resynchronization 4-4 Full Resynchronization 4-5 Understanding Hot-Configuration 4-5 Replication’s Impact on Request Processing 4-5 Replication Configuration Settings 4-5 RepType 4-6 RepTransactionSyncInterval 4-6 Master 4-6 Slave 4-6 RepTransactionArchiveLimit 4-6 RepIPAddress 4-7 RepPort 4-7 RepSecret 4-7 RepIPMaster 4-7 RepMasterIPAddress 4-7 RepMasterPort 4-7 Cisco Access Registrar 3.5 Concepts and Reference Guide OL-2683-02 v Contents Rep Members Subdirectory 4-8 Rep Members/Slave1 4-8 Name 4-8 IPAddress 4-8 Port 4-8 CHAPTER 5 Understanding SNMP 5-1 Overview 5-1 Supported MIBs 5-1 RADIUS-AUTH-CLIENT-MIB 5-1 RADIUS-AUTH-SERVER-MIB 5-2 RADIUS-ACC-CLIENT-MIB 5-2 RADIUS-ACC-SERVER-MI...