000022717 - RSA RADIUS does not log Cisco Vendor-Specific Attributes for Cisco PIX

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022717
Applies ToRSA Authentication Manager 6.1
RSA RADIUS Server 6.1 Powered by Funk Steel-Belted RADIUS
Cisco PIX Firewall
Vendor-Specific Attribute (VSA)
IssueRSA RADIUS does not log Cisco Vendor-Specific Attributes for Cisco PIX
Using a protocol analyzer, Cisco PIX sends the attributes, but RSA RADIUS does not handle them
CauseCisco PIX Vendor-Specific attributes are defined in RADIUS dictionary, not in Cisco dictionary
ResolutionBy looking in RSA RADIUS\Service\vendor.ini, Cisco PIX Firewall's configuration is in the radius.dct dictionary, and not in cisco.dct dictionary.

To add new Vendor-Specific Attributes for Cisco PIX Firewall, edit the file radius.dct.
Legacy Article IDa29976

Attachments

    Outcomes