Add a Custom RADIUS User Attribute Definition
RADIUS user attributes can be assigned to user outside of the user’s assigned RADIUS profile. For example, you might want to add a callback telephone number attribute to later individually assign to users with their specific telephone numbers.
A custom RADIUS user attribute can be either of the following:
A new, non-standard RADIUS attribute (value of 64 to 255) that you add a to a RADIUS dictionary.
A non-standard RADIUS attribute that exists in a RADIUS dictionary.
You can add a custom user attribute definition with or without an actual value, or map it to an attribute in an LDAP directory.
Before you begin
When the custom RADIUS attribute is a new attribute, make sure that it does not conflict with an existing attribute in the dictionary. If the dictionary contains an attribute that uses the same name or number as the attribute that you want to add, comment out the conflicting attribute.
When you create a new custom attribute, for each RADIUS client type that uses the attribute, add a RADIUS attribute definition to the RADIUS dictionary for that client type. You must add the attribute to the dictionary on each RSA RADIUS server. For more information, see Add a RADIUS Attribute Definition to a Dictionary.
Procedure
In the Security Console, click RADIUS > RADIUS User Attribute Definitions > Add New.
In the Number field, enter a number between 64 and 225.
In the Attribute Name field, enter a name that describes the function of the attribute.
Enter a name that is different from the standard RADIUS attribute names.
In the Map to Identity Attribute section, select whether to map the custom attribute to an identity source attribute or to manually enter the attribute value, and do one of the following:
If you select Yes, select the identity attribute to which you want to map the RADIUS attribute, and enter any notes about this attribute mapping, for example, Mapped to telephone number in HR database.
If you select No, enter the default value and any notes about this attribute, for example, User's office telephone number as of October 1, 2012.
Click Save.
After you finish
If you do not enter the value when you add the definition, you must enter the attribute value when you assign the attribute to a user or trusted user. For more information, see Assign RADIUS User Attributes to Users.
Related Concepts
Related Tasks
Related Articles
RSA Via Lifecycle and Governance 6.9.1 P06 User Access Review includes indirect entitlements of users Number of Views SSLv3 POODLE Vulnerability (CVE-2014-3566) in RSA DCS products Number of Views Authentication Manager Log Messages (20181-20244) Number of Views Import a Signed Virtual Host Certificate Number of Views Creating a custom attribute and reporting on it in RSA Authentication Manager 8.2 SP1 or later Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle RSA Authentication Manager 8.8 Setup and Configuration Guide Artifacts to gather in RSA Identity Governance & Lifecycle
