Cisco FirePOWER ASA 5500 series Configuration Manual page 923

Appendix E Configuring an External Server for Authorization and Authentication
Table E-2 Security Appliance Supported LDAP Cisco Schema Attributes (continued)
Attribute Name/
OID (Object Identifier)
cVPN3000-WebVPN-SVC-Keep-Enable
cVPN3000-IE-Proxy-Server
cVPN3000-IE-Proxy-Method
cVPN3000-IE-Proxy-Exception-List
cVPN3000-IE-Proxy-Bypass-Local
cVPN3000-Tunnel-Group-Lock
cVPN3000-Firewall-ACL-In
cVPN3000-Firewall-ACL-Out
cVPN3000-PFS-Required
cVPN3000-WebVPN-SVC-Keepalive
cVPN3000-WebVPN-SVC-Client-DPD
cVPN3000-WebVPN-SVC-Gateway-DPD
cVPN3000-WebVPN-SVC-Rekey-Period
cVPN3000-WebVPN-SVC-Rekey-Method
cVPN3000-WebVPN-SVC-Compression
OL-10088-01
VPN Attr.
1
3000 ASA PIX OID
Y Y 87
Y 88
Y 89
Y 90
Y 91
Y Y 92
Y Y 93
Y Y 94
Y Y Y 95
Y Y 96
Y Y 97
Y Y 98
Y Y 99
Y Y 100
Y Y 101
Cisco Security Appliance Command Line Configuration Guide
Configuring an External LDAP Server
Single
or
Syntax/ Multi-
Type Valued Possible Values
Integer Single 0 = Disabled
1 = Enabled
String Single IP address
Integer Single 1 = No Modify
2 = No Proxy
3 = Auto Detect
4 = Other
String Single newline (\n)-separated list of
DNS domains
Integer Single 0 = None
1 = Local
String Single Name of the tunnel group or
"none"
String Single Access list ID
String Single Access list ID
Boolean Single 0 = No
1 = Yes
Integer Single 0 = Disabled
n = Keepalive value in seconds
(15 - 600)
Integer Single 0 = Disabled
n = Dead Peer Detection value
in seconds (30 - 3600)
Integer Single 0 = Disabled
n = Dead Peer Detection value
in seconds (30 - 3600)
Integer Single 0 = Disabled
n = Retry period in minutes (4 -
10080)
Integer Single 0 = None
1 = SSL
2 = New tunnel
3 = Any (sets to SSL)
Integer Single 0 = None
1 = Deflate Compression
E-13