HP-UX AAA Server A.07.01 Administrator's Guide

Tunneling Reply Items (Optional)

Use the drop-down menu to specify the behavior when the HP-UX AAA Server receives

an Access-Request that does not contain any Tunnel Hint attributes (like Tunnel-Type).

The options are as follows:

• Return-Configured-Tunnel-Attributes: Allows the return of tunnel attributes in

the authentication reply.

• Return-No-Tunnel-Attributes: Does not return any tunnel attributes in the

authentication reply.

• Reject-Access-Request: Fails the authentication by silently discarding the

Access-Request.

If no value is selected, Return-Configured-Tunnel-Attributes is used.

Certificate Properties

Clicking Certificate Properties takes you to the Certificate Properties screen where you

can modify the properties described in Table 11-4.

Table 11-4 Certificate Path Properties

FunctionOption

For TLS, TTLS, and PEAP. Fully-qualified file name to the

AAA server certificate in .pem or .cer format.

Server Certificate Path

Fully-qualified file name to a file in .pemor .cer format

that contains the private key used to generate the AAA

server certificate. This file cannot be encrypted.

Server Private Key Path

For TLS only. Fully-qualified file name to the Certificate

Authority (CA) certificate for the client certificate. Used

Client Certificate Authority Path

by the AAA server to authenticate client certificates. The

CA certificate for the client certificate must be in .pem

format.

For TLS, TTLS, and PEAP. Fully-qualified file name to the

random seed used to generate keys.

Random Seed Path

126 Modifying Server Properties