Troubleshooting guide
2 — 5620 SAM user security tasks
Alcatel-Lucent 5620 Service Aware Manager 2-39
5620 SAM
System Administrator Guide
Procedure 2-34 To configure remote authentication and
authorization for remote-only users
1 Perform one of the following:
a To configure remote authentication and authorization for remote-only users
where the 5620 SAM provides the user group to which the user belongs, go to
step 2.
b To configure remote authentication and authorization for remote-only users
where the remote authentication server provides the user group to which the
user belongs, go to step 3.
2 Specify the default external user group:
i Using an account with an assigned security scope of command role, choose
Administration→Security→5620 SAM User Security from the 5620 SAM main
menu. The 5620 SAM User Security - Security Management (Edit) form opens.
ii Select a user group in the Default External User Group panel.
iii Save your changes and close the form.
3 Modify the SamJaasLogin.config file:
i Log in to the 5620 SAM main server station as the samadmin user.
ii Navigate to the server configuration directory, typically
/opt/5620sam/server/nms/config.
iii Open the SamJaasLogin.config file using a text editor.
Note 1 — Ensure that remote authentication is enabled. See
Procedure 2-33 for information about creating RADIUS and TACACS+
authentication policies.
Note 2 — See “Remote authentication and authorization” in section
2.1 for information about remote authentication and authorization for
remote-only users.
Note — The samvsa flag must be set to false in the
SamJaasLogin.config file. The default value is false. The
SamJaasLogin.config file is located in the server installation
configuration directory, typically C:\5620sam\client\nms\config or
/opt/5620sam/server/nms/config.
Note — Do not select a user group that has the Apply Local
Authentication Only parameter enabled. Doing so may cause subsequent
login attempts to fail once the user is created locally in 5620 SAM.
Note — Ensure that you create a backup of the SamJaasLogin.config
file before you make any modifications to it.
Release 12.0 R6 | November 2014 | 3HE 08861 AAAF TQZZA Edition 01