Filter
Top Products
13-65
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 13 User Databases
ODBC Database
The input names are for guidance only. Procedure variables created from them can
have different names; however, they must be defined in the procedure in the order
shown—the username must precede the password variable.
PAP Procedure Output
The stored procedure must return a single row containing the non-null fields.
Table 13-3 lists the procedure results Cisco Secure ACS expects as output from
stored procedure.
The CSNTGroup and CSNTacctInfo fields are processed only after a successful
authentication. The CSNTerrorString file is logged only after a failure (if the
result is greater than or equal to 4).
Table 13-2 PAP Stored Procedure Input
Field Type Explanation
CSNTusername String 0-64 characters
CSNTpassword String 0-255 characters
Table 13-3 PAP Stored Procedure Results
Field Type Explanation
CSNTresult Integer See Table 13-8.
CSNTgroup Integer The Cisco Secure ACS group number for authorization.
0xFFFFFFFF is used to assign the default value. Values other than
0-499 are converted to the default.
Note The group specified in the CSNTgroup field overrides group
mapping configured for the ODBC external user database.
CSNTacctInfo String 0-16 characters. A customer-defined string that Cisco Secure ACS
adds to subsequent account log file entries.
CSNTerrorString String 0-255 characters. A customer-defined string that Cisco Secure ACS
writes to the CSAuth service log file if an error occurs.