1# -*- text -*-
2#
3#	Microsoft's VSA's, from RFC 2548
4#
5#	$Id$
6#
7
8VENDOR		Microsoft			311
9
10BEGIN-VENDOR	Microsoft
11ATTRIBUTE	MS-CHAP-Response			1	octets
12ATTRIBUTE	MS-CHAP-Error				2	string
13ATTRIBUTE	MS-CHAP-CPW-1				3	octets
14ATTRIBUTE	MS-CHAP-CPW-2				4	octets
15ATTRIBUTE	MS-CHAP-LM-Enc-PW			5	octets
16ATTRIBUTE	MS-CHAP-NT-Enc-PW			6	octets
17##ATTRIBUTE	MS-MPPE-Encryption-Policy		7	octets  ##[wireshark]
18ATTRIBUTE	MS-MPPE-Encryption-Policy		7	integer ##[wireshark]
19# This is referred to as both singular and plural in the RFC.
20# Plural seems to make more sense.
21##ATTRIBUTE	MS-MPPE-Encryption-Type			8	octets  ##[wireshark]
22##ATTRIBUTE	MS-MPPE-Encryption-Types		8	octets  ##[wireshark]
23ATTRIBUTE	MS-MPPE-Encryption-Type			8	integer ##[wireshark]
24ATTRIBUTE	MS-MPPE-Encryption-Types		8	integer ##[wireshark]
25ATTRIBUTE	MS-RAS-Vendor				9	integer	# content is Vendor-ID
26ATTRIBUTE	MS-CHAP-Domain				10	string
27ATTRIBUTE	MS-CHAP-Challenge			11	octets
28ATTRIBUTE	MS-CHAP-MPPE-Keys			12	octets  encrypt=1
29ATTRIBUTE	MS-BAP-Usage				13	integer
30ATTRIBUTE	MS-Link-Utilization-Threshold		14	integer # values are 1-100
31ATTRIBUTE	MS-Link-Drop-Time-Limit			15	integer
32ATTRIBUTE	MS-MPPE-Send-Key			16	octets	encrypt=2
33ATTRIBUTE	MS-MPPE-Recv-Key			17	octets	encrypt=2
34ATTRIBUTE	MS-RAS-Version				18	string
35ATTRIBUTE	MS-Old-ARAP-Password			19	octets
36ATTRIBUTE	MS-New-ARAP-Password			20	octets
37ATTRIBUTE	MS-ARAP-PW-Change-Reason		21	integer
38
39ATTRIBUTE	MS-Filter				22	octets
40ATTRIBUTE	MS-Acct-Auth-Type			23	integer
41ATTRIBUTE	MS-Acct-EAP-Type			24	integer
42
43ATTRIBUTE	MS-CHAP2-Response			25	octets
44ATTRIBUTE	MS-CHAP2-Success			26	octets
45ATTRIBUTE	MS-CHAP2-CPW				27	octets
46
47ATTRIBUTE	MS-Primary-DNS-Server			28	ipaddr
48ATTRIBUTE	MS-Secondary-DNS-Server			29	ipaddr
49ATTRIBUTE	MS-Primary-NBNS-Server			30	ipaddr
50ATTRIBUTE	MS-Secondary-NBNS-Server		31	ipaddr
51
52#ATTRIBUTE	MS-ARAP-Challenge	33	octets
53
54## MS-RNAP
55#
56# http://download.microsoft.com/download/9/5/E/95EF66AF-9026-4BB0-A41D-A4F81802D92C/%5BMS-RNAP%5D.pdf
57
58ATTRIBUTE	MS-RAS-Client-Name			34	string
59ATTRIBUTE	MS-RAS-Client-Version			35	string
60ATTRIBUTE	MS-Quarantine-IPFilter			36	octets
61ATTRIBUTE	MS-Quarantine-Session-Timeout		37	integer
62ATTRIBUTE	MS-User-Security-Identity		40	string
63ATTRIBUTE	MS-Identity-Type			41	integer
64ATTRIBUTE	MS-Service-Class			42	string
65ATTRIBUTE	MS-Quarantine-User-Class		44	string
66ATTRIBUTE	MS-Quarantine-State			45	integer
67ATTRIBUTE	MS-Quarantine-Grace-Time		46	integer
68ATTRIBUTE	MS-Network-Access-Server-Type		47	integer
69ATTRIBUTE	MS-AFW-Zone				48	integer
70
71VALUE	MS-AFW-Zone			MS-AFW-Zone-Boundary-Policy 1
72VALUE	MS-AFW-Zone			MS-AFW-Zone-Unprotected-Policy 2
73VALUE	MS-AFW-Zone			MS-AFW-Zone-Protected-Policy 3
74
75ATTRIBUTE	MS-AFW-Protection-Level			49	integer
76
77VALUE	MS-AFW-Protection-Level		HECP-Response-Sign-Only	1
78VALUE	MS-AFW-Protection-Level		HECP-Response-Sign-And-Encrypt 2
79
80ATTRIBUTE	MS-Machine-Name				50	string
81ATTRIBUTE	MS-IPv6-Filter				51	octets
82ATTRIBUTE	MS-IPv4-Remediation-Servers		52	octets
83ATTRIBUTE	MS-IPv6-Remediation-Servers		53	octets
84ATTRIBUTE	MS-RNAP-Not-Quarantine-Capable		54	integer
85
86VALUE	MS-RNAP-Not-Quarantine-Capable	SoH-Sent		0
87VALUE	MS-RNAP-Not-Quarantine-Capable	SoH-Not-Sent		1
88
89ATTRIBUTE	MS-Quarantine-SOH			55	octets
90ATTRIBUTE	MS-RAS-Correlation			56	octets
91
92#  Or this might be 56?
93ATTRIBUTE	MS-Extended-Quarantine-State		57	integer
94
95ATTRIBUTE	MS-HCAP-User-Groups			58	string
96ATTRIBUTE	MS-HCAP-Location-Group-Name		59	string
97ATTRIBUTE	MS-HCAP-User-Name			60	string
98ATTRIBUTE	MS-User-IPv4-Address			61	ipaddr
99ATTRIBUTE	MS-User-IPv6-Address			62	ipv6addr
100ATTRIBUTE	MS-TSG-Device-Redirection		63	integer
101
102#
103#	Integer Translations
104#
105#       MS-MPPE-Encryption-Policy Values   ##[wireshark]
106
107VALUE           MS-MPPE-Encryption-Policy       Encryption-Allowed      1  ##[wireshark]
108VALUE           MS-MPPE-Encryption-Policy       Encryption-Required     2  ##[wireshark]
109
110#       MS-MPPE-Encryption-Types Values  ##[wireshark]
111
112VALUE MS-MPPE-Encryption-Types  None                            0  ##[wireshark]
113VALUE MS-MPPE-Encryption-Types  RC4-40                          2  ##[wireshark]
114VALUE MS-MPPE-Encryption-Types  RC4-128                         4  ##[wireshark]
115VALUE MS-MPPE-Encryption-Types  RC4-40-128                      6  ##[wireshark]
116VALUE MS-MPPE-Encryption-Types  Stateless                       8  ##[wireshark]
117VALUE MS-MPPE-Encryption-Types  RC4-40-Stateless               10  ##[wireshark]
118VALUE MS-MPPE-Encryption-Types  RC4-128-Stateless              12  ##[wireshark]
119VALUE MS-MPPE-Encryption-Types  RC4-40-128-Stateless           14  ##[wireshark]
120
121#	MS-BAP-Usage Values
122
123VALUE	MS-BAP-Usage			Not-Allowed		0
124VALUE	MS-BAP-Usage			Allowed			1
125VALUE	MS-BAP-Usage			Required		2
126
127#	MS-ARAP-Password-Change-Reason Values
128
129VALUE	MS-ARAP-PW-Change-Reason	Just-Change-Password	1
130VALUE	MS-ARAP-PW-Change-Reason	Expired-Password	2
131VALUE	MS-ARAP-PW-Change-Reason	Admin-Requires-Password-Change 3
132VALUE	MS-ARAP-PW-Change-Reason	Password-Too-Short	4
133
134#	MS-Acct-Auth-Type Values
135
136VALUE	MS-Acct-Auth-Type		PAP			1
137VALUE	MS-Acct-Auth-Type		CHAP			2
138VALUE	MS-Acct-Auth-Type		MS-CHAP-1		3
139VALUE	MS-Acct-Auth-Type		MS-CHAP-2		4
140VALUE	MS-Acct-Auth-Type		EAP			5
141
142#	MS-Acct-EAP-Type Values
143
144VALUE	MS-Acct-EAP-Type		MD5			4
145VALUE	MS-Acct-EAP-Type		OTP			5
146VALUE	MS-Acct-EAP-Type		Generic-Token-Card	6
147VALUE	MS-Acct-EAP-Type		TLS			13
148
149#  MS-Identity-Type Values
150
151VALUE	MS-Identity-Type		Machine-Health-Check	1
152VALUE	MS-Identity-Type		Ignore-User-Lookup-Failure 2
153
154#  MS-Quarantine-State Values
155
156VALUE	MS-Quarantine-State		Full-Access		0
157VALUE	MS-Quarantine-State		Quarantine		1
158VALUE	MS-Quarantine-State		Probation		2
159
160#  MS-Network-Access-Server-Type Values
161
162VALUE	MS-Network-Access-Server-Type	Unspecified		0
163VALUE	MS-Network-Access-Server-Type	Terminal-Server-Gateway	1
164VALUE	MS-Network-Access-Server-Type	Remote-Access-Server	2
165VALUE	MS-Network-Access-Server-Type	DHCP-Server		3
166VALUE	MS-Network-Access-Server-Type	Wireless-Access-Point	4
167VALUE	MS-Network-Access-Server-Type	HRA			5
168VALUE	MS-Network-Access-Server-Type	HCAP-Server		6
169
170#  MS-Extended-Quarantine-State Values
171
172VALUE	MS-Extended-Quarantine-State	Transition		1
173VALUE	MS-Extended-Quarantine-State	Infected		2
174VALUE	MS-Extended-Quarantine-State	Unknown			3
175VALUE	MS-Extended-Quarantine-State	No-Data			4
176
177END-VENDOR Microsoft
178