Manualshelf

HP-UX AAA Server A.07.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software
161162163164165166167168169170
Table 16-1 Bit Masks to Configure OTP Authentication Tasks (continued)
ActionBit MaskTask
The HP-UX AAA Server removes the OTP from the
incoming password and replaces the User-Password
2Removes the OTP
attribute with password. This bit mask must be used
if the User-Password attribute contains the password
and OTP.
The HP-UX AAA Server returns a proxy event to the
FSM. Proxy files can be configured to proxy the
request to the proxy target server.
1Sets the proxy event code
NOTE: The HP-UX AAA Server executes the actions, listed in Table 16-1, in the
predefined descending order of bit masks (from bit mask 7 to bit mask 1).
You can use the bit masks, listed in Table 16-1, in various combinations to configure
OTP authentication, two-factor authentication, and other operations depending on
your deployment scenario.
For example, to validate the password and the OTP (two-factor authentication), the
HP-UX AAA Server must perform the following actions:
Split the password and the OTP (bit mask 7)
Validate the password (bit mask 6)
Validate the OTP (bit mask 5)
Figure 16-3 illustrates how you can set the bit mask to validate both password and OTP
(two-factor authentication).
Figure 16-3 Usage of Bit Masks to set OTP Authentication Actions
170 OATH Standards-Based OTP Authentication