Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1897
Views
0
Helpful
5
Replies

Configuring custom AV Attribute pairs in CSACS

jasonhumes
Level 1
Level 1

‎09-03-2003 08:48 PM - edited ‎03-10-2019 07:28 AM

Hello

I'm running CSACS to authenticate users to a Colubris CN3500 Access Controller and Colubris provides a 'custom av pair' to specify traffic quotas for users. How would I create these pairs within csacs? Thanks

Labels:
0 Helpful
5 Replies 5

gfullage
Cisco Employee
Cisco Employee

‎09-07-2003 09:22 PM

Follow the link below and you should be good to go:

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs31/acsuser/ae.htm#231400

0 Helpful

jasonhumes
Level 1
Level 1
In response to gfullage

‎09-09-2003 11:52 AM

Hello

First off, thanks for the document, it did help out very much. I've created my custom avpair.ini file which looks like this:

###################################

[User Defined Vendor]

Name=Colubris

IETF Code=8744

VSA 1=colubris-max-input-packets

VSA 2=colubris-max-output-packets

VSA 3=colubris-max-input-octets

VSA 4=colubris-max-output-octets

[colubris-max-input-packets]

Type=INTEGER

Profile=MULTI IN OUT

Enums=MaxPacket

[colubris-max-output-packets]

Type=INTEGER

Profile=MULTI IN OUT

Enums=MaxPacket

[colubris-max-input-octets]

Type=INTEGER

Profile=MULTI IN OUT

Enums=MaxOctet

[colubris-max-output-octets]

Type=INTEGER

Profile=MULTI IN OUT

Enums=MaxOctet

[MaxPacket]

0=10

1=100

2=1000

3=5000

4=10000

[MaxOctet]

0=100000

1=1000000

2=10000000

3=100000000

4=200000000

5=500000000

#####################################

And I've imported it using CSUtil and got no errors. But I cant seem to get it to show up in the ACS Admin pages....I've looked under user/group, interface and I cant find it anywhere...please help. Thanks

Jason Humes

0 Helpful

gfullage
Cisco Employee
Cisco Employee
In response to jasonhumes

‎09-09-2003 05:41 PM

You have to add a NAS and say that it's a type "Colubris". Then it'll appear under Interface Config, and you'll be able to enable parameters for the User and/or Group.

0 Helpful

jasonhumes
Level 1
Level 1
In response to gfullage

‎09-17-2003 07:16 AM

Hello

OK Great, I've gotten the 4 Individual items to appear within CSACS under the group config, yet the possible values I've configured dont seem to show up, just a box with a 0 in it next to each item. Any ideas. Thanks again.

0 Helpful

gfullage
Cisco Employee
Cisco Employee
In response to jasonhumes

‎09-17-2003 08:39 PM

This is because you have "MULTI" defined in the VSA. This says that you can send back more than one value for this attribute, so the box in the GUI becomes a box that allows you to add more than one value. If you remove MULTI and just have it as "IN OUT" then the boxes will be displayed as a drop-down allowing you to select one of the values you specified.

0 Helpful
Customers Also Viewed These Support Documents