ACS work with juniper firewall

Unanswered Question
Sep 24th, 2008

we are using ACS as Radius server for Juniper FW, we passed the authentication, but we want to control authorization. I have checked the document, and I tried using CSUtil.exe to load the ini file into the ACS server.

The file is what i got from Juniper website, and it is a ini file:

__________________________________

[User Defined Vendor]


Name=Netscreen

IETF Code=3224


VSA 1=NS-Admin-Privilege

VSA 2=NS-Admin-Vsys-Name

VSA 3=NS-User-Group

VSA 4=NS-Primary-DNS-Server

VSA 5=NS-Secondary-DNS-Server

VSA 6=NS-Primary-WINS-Server

VSA 7=NS-Secondary-WINS-Server


[NS-Admin-Privilege]

Type=INTEGER

Profile=OUT


[NS-Admin-Vsys-Name]

Type=STRING

Profile=OUT


[NS-User-Group]

Type=STRING

Profile=OUT


[NS-Primary-DNS-Server]

Type=IPADDR

PROFILE=OUT


[NS-Secondary-DNS-Server]

Type=IPADDR

PROFILE=OUT


[NS-Primary-WINS-Server]

Type=IPADDR

PROFILE=OUT


[NS-Secondary-WINS-Server]

Type=IPADDR

PROFILE=OUT


[NS-Subnet-Allowed]

Type=IPADDR

PROFILE=OUT


[NS-User-Status]

Type=INTEGER

_______________________


I am not sure whether the file I have imported it correct or not, can someone show me the right step for this?

thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Collin Clark Wed, 09/24/2008 - 08:23

In ACS, under Interface Configuration, you should see a RADIUS (Netscreen) link. If not, it was not loaded correctly.

Actions

This Discussion