CISCO-AUTH-FRAMEWORK-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
8
Rows
8
Columns
52
cafAuthMethodRegTable
table.1.3.6.1.4.1.9.9.656.1.1.2
·
1 row entry
·
3 columns
A list of authentication methods which are currrently
registered with Authentication Framework.
An entry is created by the agent when an authentication method
has successfully registered with Authentication Framework.
An entry is deleted by the agent upon de-registration of the
authentication method.
An entry containing registration information of a particular
authentication method with Authentication Framework.
authentication method with Authentication Framework.
Indexes
cafAuthMethod
| Column | Syntax | OID | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|
|
cafAuthMethod
The authentication method registered with Authentication
Framework. |
CiscoAuthMethod Textual Convention: CiscoAuthMethod EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.1.2.1.1 |
||||||||
|
cafAuthMethodDefaultPriority
A unique number which indicates the default priority of a
authentication method. The default priority is assigned by Authentication Framework during method registration. The method with smallest value … |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.1.2.1.2 |
||||||||
|
cafAuthMethodDefaultExecOrder
A unique number which indicates the default execution order
of a authentication method. The default execution order is assigned by Authentication Framework during method registration. The method with sm… |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.1.2.1.3 |
cafPortConfigTable
table.1.3.6.1.4.1.9.9.656.1.2.1
·
1 row entry
·
10 columns
A list of port entries. An entry will exist for each interface which support Authentication Framework feature.
An entry containing management information of Authentication
Framework applicable to a particular port.
Framework applicable to a particular port.
Indexes
IF-MIBifIndex
| Column | Syntax | OID | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|
|
cafPortControlledDirection
Specifies the controlled direction of this port.
|
CiscoAuthControlledDirectionsr/w Textual Convention: CiscoAuthControlledDirections EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.2.1.1.1 |
||||||||
|
cafPortFallBackProfile
Specifies the name of the fallback profile to be used when
failing over to Web Proxy Authentication. A zero length string indicates that fallback mechanism to Web Proxy Authentication is disabled in Authentication Fram… |
SNMP-FRAMEWORK-MIBSnmpAdminStringr/w Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.2.1.1.2 |
||||||||
|
cafPortAuthHostMode
Specifies the authentication host mode for this port.
|
CiscoAuthHostModer/w Textual Convention: CiscoAuthHostMode EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.2.1.1.3 |
||||||||
|
cafPortPreAuthOpenAccess
Specifies if the Pre-Authentication Open Access feature
allows clients/devices to gain network access before authentication is performed. A value of 'true' for this object indicates that client/device … |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.2.1.1.4 |
||||||||
|
cafPortAuthorizeControl
Specifies the authorization control for this port.
|
CiscoAuthControlledPortControlr/w Textual Convention: CiscoAuthControlledPortControl EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.2.1.1.5 |
||||||||
|
cafPortReauthEnabled
Specifies if reauthentication is enabled for this port.
|
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.2.1.1.6 |
||||||||
|
cafPortReauthInterval
Specifies the reauthentication interval, after which the port
will be reauthenticated if value of the corresponding instance of cafPortReauthEnabled is 'true'. A value of zero indicates that the reauthent… |
secondsSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.2.1.1.7 |
||||||||
|
cafPortRestartInterval
Specifies the interval after which a further authentication
attempt should be made to this port if it is not authorized. A value of zero indicates that no further authentication attempt will be made if th… |
secondsSNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.2.1.1.8 |
||||||||
|
cafPortInactivityTimeout
Specifies the period of time that a client associating with
this port is allowed to be inactive before being terminated. A value of zero indicates that inactivity timeout is disabled on thi… |
secondsInteger32r/w Constraints: range: -1-65535 |
.1.3.6.1.4.1.9.9.656.1.2.1.1.9 |
||||||||
|
cafPortViolationAction
Specifies the action to be taken due to a security violation
occurs on this port. restrict: This port will be moved to restricted state. shutdown: This port will be shutdown fro… |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.4.1.9.9.656.1.2.1.1.10 |
cafPortMethodTable
table.1.3.6.1.4.1.9.9.656.1.2.2
·
1 row entry
·
5 columns
The table contains a list of port entries. An entry will exist for each port which supports Authentication Framework feature.
Entry containing configuration and information of
authentication methods for a particular port.
authentication methods for a particular port.
Indexes
IF-MIBifIndex
| Column | Syntax | OID |
|---|---|---|
|
cafPortMethodAdminExecOrder
This object specifies the administrative execution order of
authentication methods on the port. Methods are executed in the order as specified in the method list. Method which is at the beginning of the … |
CiscoAuthMethodListr/w Textual Convention: CiscoAuthMethodList OctetString |
.1.3.6.1.4.1.9.9.656.1.2.2.1.1 |
|
cafPortMethodAdminPriority
This object specifies the administrative priority of
authentication methods on the port. The priority of each method is assigned based on the method list. Method which is at the beginning of the method l… |
CiscoAuthMethodListr/w Textual Convention: CiscoAuthMethodList OctetString |
.1.3.6.1.4.1.9.9.656.1.2.2.1.2 |
|
cafPortMethodAvailable
This object indicates the authentication methods currently
available on this port. |
CiscoAuthMethodList Textual Convention: CiscoAuthMethodList OctetString |
.1.3.6.1.4.1.9.9.656.1.2.2.1.3 |
|
cafPortMethodOperExecOrder
This object indicates the operational execution order of
authentication methods on this port. Methods are executed in the order as specified in the method list. Method which is at the beginning of the me… |
CiscoAuthMethodList Textual Convention: CiscoAuthMethodList OctetString |
.1.3.6.1.4.1.9.9.656.1.2.2.1.4 |
|
cafPortMethodOperPriority
This object indicates the operational priority of
authentication methods on this port. Methods have the priority as specified in the method list. Method which is at the beginning of the method list has h… |
CiscoAuthMethodList Textual Convention: CiscoAuthMethodList OctetString |
.1.3.6.1.4.1.9.9.656.1.2.2.1.5 |
.1.3.6.1.4.1.9.9.656.1.3.1
·
1 row entry
·
4 columns
The table contains a list of port entries.
An entry will exist for each port which supports Authentication
Fail event within the Authentication Framework.
Entry containing management information of Authentication
Fail event for a particular port.
Fail event for a particular port.
Indexes
IF-MIBifIndex
| Column | Syntax | OID | ||||
|---|---|---|---|---|---|---|
|
cafAuthFailedMaxRetry
This object specifies the maximum number of retry should be
performed before generating Authentication Fail event. A value of zero indicates that Authentication Fail event will be generated upon authentic… |
SNMPv2-SMIUnsigned32r/w Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.3.1.1.1 |
||||
|
cafAuthFailedNoActionEnabled
This object specifies whether no action will be performed
when an Authentication Fail event occurs. Setting 'true' on this object indicates that no action will be performed when Authentication Fail event … |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.3.1.1.2 |
||||
|
cafAuthFailedAuthorizedVlan
This object specifies the Authentication Failed VLAN number.
The read-only value of -1 indicates that this object is not applicable on this port. The read-only value of zero indicates that … |
Integer32r/w Constraints: range: -1-2147483647 |
.1.3.6.1.4.1.9.9.656.1.3.1.1.3 |
||||
|
cafAuthFailedNextMethodEnabled
This object specifies whether the next authentication method
will be used if an Authentication Fail event is generated by the current authentication method. Setting this object to 'true' indicates that th… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.3.1.1.4 |
.1.3.6.1.4.1.9.9.656.1.3.2
·
1 row entry
·
2 columns
The table contains a list of port entries.
An entry exists for each port which supports No Response
event within the Authentication Framework.
Entry containing management information of No Response
event for a particular port.
event for a particular port.
Indexes
IF-MIBifIndex
| Column | Syntax | OID | ||||
|---|---|---|---|---|---|---|
|
cafClientNoRespNoActionEnabled
This object specifies whether an action is performed when No
Response event occurs. Setting 'true' on this object indicates that no action will be performed when No Response event occurs. T… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.3.2.1.1 |
||||
|
cafClientNoRespAuthorizedVlan
This object specifies the No Response Authorized VLAN number.
The read-only value of -1 indicates that this object is not applicable on this port. The read-only value of zero indicates that… |
Integer32r/w Constraints: range: -1-2147483647 |
.1.3.6.1.4.1.9.9.656.1.3.2.1.2 |
cafServerEventPortTable
table.1.3.6.1.4.1.9.9.656.1.3.3
·
1 row entry
·
4 columns
The table contains a list of port entries.
An entry exists for each port which supports AAA Server
Reachability event within the Authentication Framework.
Entry containing management information of AAA Server
Reachability event for a particular port.
Reachability event for a particular port.
Indexes
IF-MIBifIndex
| Column | Syntax | OID | ||||
|---|---|---|---|---|---|---|
|
cafServerDeadNoActionEnabled
This object indicates whether an action is performed if an
AAA Server Reachability event occurs. Setting 'true' on this object indicates that no action will be performed when AAA Server Reachability event… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.3.3.1.1 |
||||
|
cafServerDeadRemainAuthorized
This object specifies if current authorization will remain
unchanged for the port when AAA Server Reachability event occurs. Setting 'true' on this object indicates that current authorization will remain … |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.3.3.1.2 |
||||
|
cafServerDeadAuthorizedVlan
This object specifies the AAA Server Reachability
Authorized VLAN number. The read-only value of -1 indicates that this object is not applicable on this port. The read-only value of zero in… |
Integer32r/w Constraints: range: -1-2147483647 |
.1.3.6.1.4.1.9.9.656.1.3.3.1.3 |
||||
|
cafServerAliveAction
This object specifies the action applied to the port upon AAA
recovery. none : no action will be applied. reinitialize: the port will be reinitialized with the current authentication m… |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.4.1.9.9.656.1.3.3.1.4 |
cafSessionTable
table.1.3.6.1.4.1.9.9.656.1.4.1
·
1 row entry
·
22 columns
The table contains a list of authentication session.
An entry is created when an authentication session has
successfully created within Authentication Framework.
An entry is deleted when an authentication session has been
removed.
Entry containing management information for a particular
authentication session.
authentication session.
Indexes
IF-MIBifIndex cafSessionId
| Column | Syntax | OID | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cafSessionId
A unique identifier of the authentication session.
|
OctetString Constraints: range: 1-64 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.1 |
||||||||||||||
|
cafSessionClientMacAddress
Indicates the MAC address of the device associates with the
authentication session. |
SNMPv2-TCMacAddress Textual Convention: SNMPv2-TCMacAddress OctetStringType Constraints: range: 6 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.2 |
||||||||||||||
|
cafSessionClientAddrType
Indicates the type of Internet address of the client
associates with the authentication session. |
INET-ADDRESS-MIBInetAddressType Textual Convention: INET-ADDRESS-MIBInetAddressType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.3 |
||||||||||||||
|
cafSessionClientAddress
Indicates the Internet address of the client associates with
the authentication session. The type of this address is determined by the value of cafSessionClientAddrType object. |
INET-ADDRESS-MIBInetAddress Textual Convention: INET-ADDRESS-MIBInetAddress OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.4 |
||||||||||||||
|
cafSessionStatus
Indicates the current status of the authentication session.
idle : the session has been initialized and no method has run yet. running : an authentication method is r… |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.5 |
||||||||||||||
|
cafSessionDomain
Indicates the type of domain that the authentication session
belongs to. other : none of the below. data : indicates the data domain. voice: indicates the voice domain. |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.6 |
||||||||||||||
|
cafSessionAuthHostMode
Indicates the authentication host mode of the port in the
authentication session. |
CiscoAuthHostMode Textual Convention: CiscoAuthHostMode EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.7 |
||||||||||||||
|
cafSessionControlledDirection
Indicates the operational controlled directions parameter
for this port in the authentication session. |
CiscoAuthControlledDirections Textual Convention: CiscoAuthControlledDirections EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.8 |
||||||||||||||
|
cafSessionPostureToken
Indicates the posture token associates with the authentication
session. |
CISCO-NAC-TC-MIBCnnEouPostureTokenString Textual Convention: CISCO-NAC-TC-MIBCnnEouPostureTokenString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.9 |
||||||||||||||
|
cafSessionAuthUserName
Indicates the name of the authenticated user for the
authentication session. |
SNMP-FRAMEWORK-MIBSnmpAdminString Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.10 |
||||||||||||||
|
cafSessionClientFramedIpPool
Indicates the name of the address pool from which the
session's client IP address is assigned. |
SNMP-FRAMEWORK-MIBSnmpAdminString Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.11 |
||||||||||||||
|
cafSessionAuthorizedBy
Indicates the name of the feature which authorizes the
authentication session. |
SNMP-FRAMEWORK-MIBSnmpAdminString Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.12 |
||||||||||||||
|
cafSessionCriticalTimeLeft
Indicates the leftover time before the next authentication
attempt for the authentication session after Server Reachability event occurred. Value zero indicates that this session is currently being authenticated or it … |
secondsSNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.13 |
||||||||||||||
|
cafSessionAuthVlan
Indicates the authorized VLAN applied to the authentication
session. Value zero indicates that no authorized VLAN has been applied, or it is not applicable. |
CISCO-PRIVATE-VLAN-MIBVlanIndexOrZero Textual Convention: CISCO-PRIVATE-VLAN-MIBVlanIndexOrZero Integer32Type Constraints: range: 0..4095 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.14 |
||||||||||||||
|
cafSessionTimeout
Indicates the session timeout used by Authentication
Framework in the authentication session. |
secondsSNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.15 |
||||||||||||||
|
cafSessionTimeLeft
Indicates the leftover time of the current authentication
session. |
secondsSNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.16 |
||||||||||||||
|
cafSessionTimeoutAction
Indicates the timeout action on the authentication session,
when value of the corresponding instance of cafSessionTimeLeft reaches zero. unknown : None of the below. terminate … |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.17 |
||||||||||||||
|
cafSessionInactivityTimeout
Indicates the inactivity timeout used by Authentication
Framework in the authentication session. |
secondsSNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.18 |
||||||||||||||
|
cafSessionInactivityTimeLeft
Indicates the leftover time of the inactivity timer of
the authentication session. |
secondsSNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.19 |
||||||||||||||
|
cafSessionReauth
The reauthentication control for the authentication session.
Setting this object to 'true' cause the current authenticated session to reauthenticate the authenticated client. Setting this object to 'false' has no effect… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.20 |
||||||||||||||
|
cafSessionTerminate
The termination request control for the authentication session.
Setting this object to 'true' terminates the current session. Setting this object to 'false' has no effect. This object always returns 'fals… |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.4.1.1.21 |
||||||||||||||
|
cafSessionVlanGroupName
The name of the VLAN group that has been used during VLAN
assignment for this session. A zero length string indicates that there is no VLAN group been used during VLAN assignment. |
SNMP-FRAMEWORK-MIBSnmpAdminString Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.656.1.4.1.1.22 |
.1.3.6.1.4.1.9.9.656.1.4.2
·
1 row entry
·
2 columns
The table contains a list of authentication method for every
authentication session.
An entry exists for each authentication method that can
authenticate an authentication session within
Authentication Framework.
Entry containing method information for a particular runnable
authentication methods which is associated with a session for
an Authentication Framework managed port.
authentication methods which is associated with a session for
an Authentication Framework managed port.
Indexes
| Column | Syntax | OID | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cafSessionMethod
Indicates this authentication method.
|
CiscoAuthMethod Textual Convention: CiscoAuthMethod EnumerationType Values:
|
.1.3.6.1.4.1.9.9.656.1.4.2.1.1 |
||||||||||
|
cafSessionMethodState
Indicates the state of this authentication method.
notRun : The method has not run for this session. running : The method is running for this session. failedOver : … |
Enumeration Enumerated Values:
|
.1.3.6.1.4.1.9.9.656.1.4.2.1.2 |