Chapter 9 Managing Policy Elements

Managing Authorizations and Permissions

Specifying RADIUS Attributes in Authorization Profiles

Use this tab to configure which RADIUS attributes to include in the Access-Accept packet for an authorization profile. This tab also displays the RADIUS attribute parameters that you choose in the Common Tasks tab.

Step 1 Select Policy Elements > Authorization and Permissions > Network Access > Authorization Profiles, then click:

Create to create a new network access authorization definition, then click the RADIUS Attributes tab.

Check the check box next to the authentication profile that you want to duplicate, click Duplicate, and then click the RADIUS Attributes tab.

Check the check box next to the authentication profile that you want to duplicate, click Edit, and then click the RADIUS Attributes tab.

Step 2 Complete the required fields of the Authorization Profile: RADIUS Attributes page as shown in Table 9-6:

Table 9-6 Authorization Profile: RADIUS Attributes Page

Option

Description

Common Tasks

Displays the names, values, and types for the attributes that you defined in the Common Tasks tab.

Attributes

 

 

 

Manually Entered

Use this section to define RADIUS attributes to include in the authorization profile. As you define each

 

attribute, its name, value, and type appear in the table. To:

Add a RADIUS attribute, fill in the fields below the table and click Add.

Edit a RADIUS attribute, select the appropriate row in the table and click Edit. The RADIUS parameters appear in the fields below the table. Edit as required, then click Replace.

Dictionary Type

Choose the dictionary that contains the RADIUS attribute you want to use.

 

 

User Guide for Cisco Secure Access Control System 5.3

 

 

 

 

 

 

OL-24201-01

 

 

9-21

 

 

 

 

 

Page 251
Image 251
Cisco Systems OL-24201-01 manual Specifying Radius Attributes in Authorization Profiles