we are using ACS as Radius server for Juniper FW, we passed the authentication, but we want to control authorization. I have checked the document, and I tried using CSUtil.exe to load the ini file into the ACS server.
The file is what i got from Juniper website, and it is a ini file:
__________________________________
[User Defined Vendor]
Name=Netscreen
IETF Code=3224
VSA 1=NS-Admin-Privilege
VSA 2=NS-Admin-Vsys-Name
VSA 3=NS-User-Group
VSA 4=NS-Primary-DNS-Server
VSA 5=NS-Secondary-DNS-Server
VSA 6=NS-Primary-WINS-Server
VSA 7=NS-Secondary-WINS-Server
[NS-Admin-Privilege]
Type=INTEGER
Profile=OUT
[NS-Admin-Vsys-Name]
Type=STRING
Profile=OUT
[NS-User-Group]
Type=STRING
Profile=OUT
[NS-Primary-DNS-Server]
Type=IPADDR
PROFILE=OUT
[NS-Secondary-DNS-Server]
Type=IPADDR
PROFILE=OUT
[NS-Primary-WINS-Server]
Type=IPADDR
PROFILE=OUT
[NS-Secondary-WINS-Server]
Type=IPADDR
PROFILE=OUT
[NS-Subnet-Allowed]
Type=IPADDR
PROFILE=OUT
[NS-User-Status]
Type=INTEGER
_______________________
I am not sure whether the file I have imported it correct or not, can someone show me the right step for this?
thanks