Chapter 11 Working with User Databases
ODBC Database
11-48
User Guide for Cisco Secure ACS for Windows Server
78-14696-01, Version 3.1
CHAP/MS-CHAP/ARAP Authentication Procedure Input
Cisco Secure ACS provides a single value for input to the stored procedure
supporting CHAP/MS-CHAP/ARAP authentication. The stored procedure should
accept the named input value as a variable.
Note Because Cisco Secure ACS performs authentication for
CHAP/MS-CHAP/ARAP, the user password is not an input (Table 11-4).
The input name is for guidance only. A procedure variable created from it can
have a different name.
CHAP/MS-CHAP/ARAP Procedure Output
The stored procedure must return a single row containing the non-null fields.
Table 11-5 lists the procedure results Cisco Secure ACS expects as output from
stored procedure.
Table 11-4 CHAP Stored Procedure Input
Field Type Explanation
CSNTusername String 0-64 characters
Table 11-5 CHAP/MS-CHAP/ARAP Stored Procedure Results
Field Type Explanation
CSNTresult Integer See Table 11-6 Result Codes.
CSNTgroup Integer The Cisco Secure ACS group number for
authorization. 0xFFFFFFFF is used to assign
the default value. Values other than 0-499 are
converted to the default.
Note The group specified in the CSNTgroup
field overrides group mapping
configured for the ODBC external user
database.
To Next Page
Loading...
Need help?
General