sitesec.AOSSecurityPolicy (NSP Network Functions Manager

sitesec
AOSSecurityPolicy

AOS Security Policy.

Inheritance Hierarchy
- ManagedObject
  - policy.PolicyObject
    - policy.PolicyDefinition
      - sitesec. AOSSecurityPolicy

Parent Hierarchy
- netw.Network
  - netw.NetworkElement
    - policy.Manager [AOSSecurity]
      - sitesec.AOSSecurityPolicy [[network]:[${systemAddress}]:[$%{policyTypeManaged}]:[${displayedName}]]
- parent []
  - sitesec.AOSSecurityPolicy [[backup-${policyTypeManaged}]:[${displayedName}]]
- policy.Manager [AOSSecurity]
  - sitesec.AOSSecurityPolicy [[$%{policyTypeManaged}]:[${displayedName}]]

Children Hierarchy
- sitesec.AOSSecurityPolicy

Relationships
- many sitesec.AOSSecurityPolicys may be direct children of one policy.Manager (child-parent relationship)
- many sitesec.AOSSecurityPolicys may be associated with sitesec.AOSSecurityPolicy (implied relationship)
- sitesec.AOSSecurityPolicy may be associated with many sitesec.AOSSecurityPolicys (implied relationship)

AOSSecurityPolicy

Relative Name=[[${displayedName}]]

Displayed Name=Site AOS Security Policy

Properties
aaasIpAddress	IP Address. type=InetAddress default=0.0.0.0 Displayed(tab/group)=IP Address (/Common)
aaasIpAddress2	IP Address 2. type=InetAddress default= Displayed(tab/group)=IP Address 2 (/Common)
aaasIpAddressType	IP Address Type. type=rtr.InetAddressType default=ipv4
aaasIpAddressType2	type=rtr.InetAddressType
aaasLdapDn	LDAP Dn. type=string default= minimum=1 maximum=255 Displayed(tab/group)=Domain Name (/LDAP)
aaasLdapEnableSsl	LDAP SSL Enable. type=generic.TruthValue default=false Displayed(tab/group)=SSL (/LDAP)
aaasLdapPasswd	Ldap Password type=string default= minimum=1 maximum=31 Displayed(tab/group)=Password (/LDAP)
aaasLdapPort	LDAP port. type=int default=389 minimum=0 maximum=65535 Displayed(tab/group)=Port (/LDAP)
aaasLdapSearchBase	This parameter specifies the search base recognized by the LDAP-enabled directory servers. For example, o=company or c=country. The range is 1 to 63 characters. type=string default= minimum=1 maximum=63 Displayed(tab/group)=Search Base (/LDAP)
aaasLdapServType	LDAP server type. type=sitesec.AosLdapServType default=generic Displayed(tab/group)=Server Type (/LDAP)
aaasProtocol	Aos Server Protocol. type=sitesec.AosServerProtocol access=read-create default=radius Displayed(tab/group)=Protocol Name (/Common)
aaasRadAcctPort	RADIUS Accounting Port. type=int default=1813 minimum=0 maximum=65535 Displayed(tab/group)=Account Port (/RADIUS)
aaasRadAuthPort	RADIUS Authorization Port. type=int default=1812 minimum=0 maximum=65535 Displayed(tab/group)=Authentication Port (/RADIUS)
aaasRadKey	This parameter specifies the secret value that is configured on the switch and the server, but which is not sent over the network. The parameter can be any text or hexadecimal string but the value must match the secret that is configured on the server. The Secret is case-sensitive and is required when creating a server. The range is 1 to 63 characters. type=string default= minimum=1 maximum=63 Displayed(tab/group)=Secret (/RADIUS)
aaasRadVRFName	RADIUS VRF Name. type=Pointer default= minimum=0 maximum=32 Displayed(tab/group)=Routing Instance (/RADIUS)
aaasRetries	This parameter specifies the number of retries that the switch makes to authenticate a user before the switch tries to use the backup server. The range is 1 to 32. The default is 3. type=int default=3 minimum=1 maximum=32 Displayed(tab/group)=Retries (/Common)
aaasTacacsKey	This parameter specifies the secret value that is configured on the switch and the server, but which is not sent over the network. The parameter can be any text or hexadecimal string but the value must match the secret that is configured on the server. The Secret is case-sensitive and is required when you create a server. The range is 1 to 63 characters. type=string default= minimum=0 maximum=63 Displayed(tab/group)=Secret (/TACACS)
aaasTacacsPort	TACACS Port. type=int default=49 minimum=0 maximum=65535 Displayed(tab/group)=Port (/TACACS)
aaasTimeOut	Timeout. type=int default=2 minimum=1 maximum=30 units=sec Displayed(tab/group)=Time Out (/Common)

Properties

aaasIpAddress

IP Address.

type=InetAddress
default=0.0.0.0
Displayed(tab/group)=IP Address (/Common)

aaasIpAddress2

IP Address 2.

type=InetAddress
default=
Displayed(tab/group)=IP Address 2 (/Common)

aaasIpAddressType

IP Address Type.

type=rtr.InetAddressType
default=ipv4

aaasIpAddressType2

type=rtr.InetAddressType

aaasLdapDn

LDAP Dn.

type=string
default=
minimum=1
maximum=255
Displayed(tab/group)=Domain Name (/LDAP)

aaasLdapEnableSsl

LDAP SSL Enable.

type=generic.TruthValue
default=false
Displayed(tab/group)=SSL (/LDAP)

aaasLdapPasswd

Ldap Password

type=string
default=
minimum=1
maximum=31
Displayed(tab/group)=Password (/LDAP)

aaasLdapPort

LDAP port.

type=int
default=389
minimum=0
maximum=65535
Displayed(tab/group)=Port (/LDAP)

aaasLdapSearchBase

This parameter specifies the search base recognized by the LDAP-enabled directory servers. For example, o=company or c=country. The range is 1 to 63 characters.

type=string
default=
minimum=1
maximum=63
Displayed(tab/group)=Search Base (/LDAP)

aaasLdapServType

LDAP server type.

type=sitesec.AosLdapServType
default=generic
Displayed(tab/group)=Server Type (/LDAP)

aaasProtocol

Aos Server Protocol.

type=sitesec.AosServerProtocol
access=read-create
default=radius
Displayed(tab/group)=Protocol Name (/Common)

aaasRadAcctPort

RADIUS Accounting Port.

type=int
default=1813
minimum=0
maximum=65535
Displayed(tab/group)=Account Port (/RADIUS)

aaasRadAuthPort

RADIUS Authorization Port.

type=int
default=1812
minimum=0
maximum=65535
Displayed(tab/group)=Authentication Port (/RADIUS)

aaasRadKey

This parameter specifies the secret value that is configured on the switch and the server, but which is not sent over the network. The parameter can be any text or hexadecimal string but the value must match the secret that is configured on the server. The Secret is case-sensitive and is required when creating a server. The range is 1 to 63 characters.

type=string
default=
minimum=1
maximum=63
Displayed(tab/group)=Secret (/RADIUS)

aaasRadVRFName

RADIUS VRF Name.

type=Pointer
default=
minimum=0
maximum=32
Displayed(tab/group)=Routing Instance (/RADIUS)

aaasRetries

This parameter specifies the number of retries that the switch makes to authenticate a user before the switch tries to use the backup server. The range is 1 to 32. The default is 3.

type=int
default=3
minimum=1
maximum=32
Displayed(tab/group)=Retries (/Common)

aaasTacacsKey

This parameter specifies the secret value that is configured on the switch and the server, but which is not sent over the network. The parameter can be any text or hexadecimal string but the value must match the secret that is configured on the server. The Secret is case-sensitive and is required when you create a server. The range is 1 to 63 characters.

type=string
default=
minimum=0
maximum=63
Displayed(tab/group)=Secret (/TACACS)

aaasTacacsPort

TACACS Port.

type=int
default=49
minimum=0
maximum=65535
Displayed(tab/group)=Port (/TACACS)

aaasTimeOut

Timeout.

type=int
default=2
minimum=1
maximum=30
units=sec
Displayed(tab/group)=Time Out (/Common)

Overridden Properties
displayedName	Displayed name. access=read-create minimum=1 maximum=31

Overridden Properties

displayedName

Displayed name.

access=read-create
minimum=1
maximum=31

Properties inherited from policy.PolicyDefinition
configurationAction, configurationMode, discoveryState, displayedName, distributionMode, isMaster, lastSyncTime, numberOfUnderlyingPolicyItems, origin, policyMode, policySyncGroupPointer, policyType

Properties inherited from policy.PolicyDefinition

configurationAction, configurationMode, discoveryState, displayedName, distributionMode, isMaster, lastSyncTime, numberOfUnderlyingPolicyItems, origin, policyMode, policySyncGroupPointer, policyType

Properties inherited from policy.PolicyObject
description, displayedName, globalPolicy, id, isLocal, policyType, siteId, siteName, templateObject

Properties inherited from policy.PolicyObject

description, displayedName, globalPolicy, id, isLocal, policyType, siteId, siteName, templateObject

Properties inherited from ManagedObject
actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed

Properties inherited from ManagedObject

actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed

Methods inherited from policy.PolicyDefinition
distribute, distributeUsingGroups, distributeV2, evaluatePolicy, findGlobal, findLocal, findReleased, getSyncTaskResult, resetToReleasedPolicy, setConfigurationModeToDraft, setConfigurationModeToReleased, setDistributionModeToLocalEditOnly, setDistributionModeToSyncWithGlobal, syncTo, syncToLocalWithResync

Methods inherited from policy.PolicyDefinition

distribute, distributeUsingGroups, distributeV2, evaluatePolicy, findGlobal, findLocal, findReleased, getSyncTaskResult, resetToReleasedPolicy, setConfigurationModeToDraft, setConfigurationModeToReleased, setDistributionModeToLocalEditOnly, setDistributionModeToSyncWithGlobal, syncTo, syncToLocalWithResync

Supported Network Elements
OS6850/6850E
OS6400
OS6855
OS6250
OS6450
OS6350
OS9700E/9800E
OS6900
OS6860E/OS6860N
OS6870
OS6865
OS6560/OS6560E
OS6570M
OS6465
OS6360
Product Specifics
OS6250 6.6.3	Warning: iframes not supported by this browser.
OS6250 6.6.4
OS6250 6.6.5
OS6250 6.7.1
OS6350 6.7.2
OS6360 8.10
OS6360 8.10
OS6360 8.9
OS6360 8.9
OS6400 6.4.3
OS6400 6.4.4
OS6400 6.4.5
OS6450 6.6.4
OS6450 6.6.5
OS6450 6.7.1
OS6450 6.7.2
OS6465 8.10
OS6465 8.10
OS6465 8.6
OS6465 8.7
OS6465 8.8
OS6465 8.8
OS6465 8.9
OS6465 8.9
OS6465 8.9
OS6560/OS6560E 8.10
OS6560/OS6560E 8.10
OS6560/OS6560E 8.6
OS6560/OS6560E 8.7
OS6560/OS6560E 8.8
OS6560/OS6560E 8.8
OS6560/OS6560E 8.9
OS6560/OS6560E 8.9
OS6560/OS6560E 8.9
OS6570M 8.10
OS6570M 8.10
OS6570M 8.9
OS6850/6850E 6.4.2
OS6850/6850E 6.4.3
OS6850/6850E 6.4.4
OS6850/6850E 6.4.5
OS6850/6850E 6.4.6
OS6855 6.4.4
OS6855 6.4.5
OS6855 6.4.6
OS6860E/OS6860N 8.10
OS6860E/OS6860N 8.10
OS6860E/OS6860N 8.6
OS6860E/OS6860N 8.7
OS6860E/OS6860N 8.8
OS6860E/OS6860N 8.8
OS6860E/OS6860N 8.9
OS6860E/OS6860N 8.9
OS6860E/OS6860N 8.9
OS6865 8.10
OS6865 8.10
OS6865 8.6
OS6865 8.7
OS6865 8.8
OS6865 8.8
OS6865 8.9
OS6865 8.9
OS6865 8.9
OS6870 8.10
OS6900 8.10
OS6900 8.10
OS6900 8.6
OS6900 8.7
OS6900 8.8
OS6900 8.8
OS6900 8.9
OS6900 8.9
OS6900 8.9
OS9700E/9800E 6.4.3
OS9700E/9800E 6.4.4
OS9700E/9800E 6.4.5
OS9700E/9800E 6.4.6

Supported Network Elements

OS6850/6850E

OS6400

OS6855

OS6250

OS6450

OS6350

OS9700E/9800E

OS6900

OS6860E/OS6860N

OS6870

OS6865