Cisco ASA 5505 User Manual
Page 1928
C-30
Cisco ASA 5500 Series Configuration Guide using the CLI
Appendix C Configuring an External Server for Authorization and Authentication
Configuring an External RADIUS Server
IPsec-Over-UDP
Y
Y
Y
34
Boolean Single
0 = Disabled
1 = Enabled
IPsec-Over-UDP-Port
Y
Y
Y
35
Integer
Single
4001 - 49151. The default
is10000.
Banner2
Y
Y
Y
36
String
Single
Banner string to display for
Cisco VPN remote access
sessions: IPsec IKEv1,
AnyConnect
SSL-TLS/DTLS/IKEv2, and
Clientless SSL. The Banner2
string is concatenated to the
Banner1 string , if configured.
PPTP-MPPC-Compression
Y
37
Integer
Single
0 = Disabled
1 = Enabled
L2TP-MPPC-Compression
Y
38
Integer
Single
0 = Disabled
1 = Enabled
IPsec-IP-Compression
Y
Y
Y
39
Integer
Single
0 = Disabled
1 = Enabled
IPsec-IKE-Peer-ID-Check
Y
Y
Y
40
Integer
Single
1 = Required
2 = If supported by peer
certificate
3 = Do not check
IKE-Keep-Alives
Y
Y
Y
41
Boolean Single
0 = Disabled
1 = Enabled
IPsec-Auth-On-Rekey
Y
Y
Y
42
Boolean Single
0 = Disabled
1 = Enabled
Required-Client- Firewall-Vendor-Code
Y
Y
Y
45
Integer
Single
1 = Cisco Systems (with Cisco
Integrated Client)
2 = Zone Labs
3 = NetworkICE
4 = Sygate
5 = Cisco Systems (with Cisco
Intrusion Prevention Security
Agent)
Table C-7
ASA Supported RADIUS Attributes and Values (continued)
Attribute Name
VPN
3000
ASA
PIX
Attr.
No.
Syntax/
Type
Single
or
Multi-
Valued
Description or Value