Filter
Top Products
524 Configuring AAA for network users
NN47250-500 (320657-F Version 02.01)
mobility-profile
(network access
mode only)
Mobility Profile
attribute for the user.
(For more
information, see
“Configuring a
Mobility Profile”
(page 552).)
Name of an existing Mobility Profile,
which can be up to 32 alphanumeric
characters, with no tabs or spaces.
Note. If the Mobility Profile feature is enabled,
and a user is assigned the name of a Mobility
Profile that does not exist on the WSS, the user is
denied access.
service-type Type of access the
user is requesting.
One of the following numbers:
• 2—Framed; for network user access
• 6—Administrative; for administrative access
to the WSS, with authorization to access the
enabled (configuration) mode. The user must
enter the enable command and the correct
enable password to access the enabled mode.
• 7—NAS-Prompt; for administrative access to
the nonenabled mode only. In this mode, the
user can still enter the enable command and
the correct enable password to access the
enabled mode.
For administrative sessions, the WSS
always sends 6 (Administrative).
The RADIUS server can reply with one
of the values listed above.
If the service-type is not set on the
RADIUS server, administrative users
receive NAS-Prompt access, and
network users receive Framed
access.
Note. WSS Software will quietly accept Callback
Framed but you cannot select this access type in
WSS Software.
session-timeout
(network access
mode only)
Maximum number of
seconds for the
user’s session.
Number between 0 and 4,294,967,296
seconds (approximately 136.2 years).
Note. If the global reauthentication timeout (set
by the set dot1x reauth-period command) is
shorter than the session-timeout, WSS Software
uses the global timeout instead.
ssid
(network access
mode only)
SSID the user is
allowed to access
after authentication.
Name of the SSID you want the user to
use. The SSID must be configured in a
service profile, and the service profile
must be used by a radio profile
assigned to Nortel radios in the
Mobility Domain.
Table 5.Authentication attributes for local users (continued)
Attribute Description Valid Value(s)