HP-UX AAA Server A.07.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

311

312

313

314

315

316

317

318

319

320

When a policy is evaluated, it can return an event to the FSM to direct the subsequent

processing of a request. The policy can return events to the FSM in the following ways:

• Exit Command: Using the Exit command terminates the evaluation of the policy.

The specified event is returned to the FSM.

• Default Event: If evaluation of a decision file reaches the end without encountering

an Exit command, the default event is returned to the FSM. The default event is

ACK.

• Error Conditions: When an error occurs, an ERROR event is returned to the FSM.

Sample Policy Implementations

HP-UX AAA Server A.07.01 contains sample FSM and decision files to support policies

for the following implementations:

• “Dynamic Access Control.”

• “ DNIS Routing” (page 313)

The following sections discuss these implementations in detail.

Dynamic Access Control

Dynamic Access Control (DAC) enables you to provide different levels of network

access to the same users depending on the following:

• Access periods

• Account and password expiry date and time

Dynamic Access Control uses three Interlink-specific attributes to check the values in

user requests. Table 25-8 describes the interlink-specific attributes used by DAC.

Table 25-8 Interlink-specific Attributes Used by DAC

DescriptionAttribute

A string that contains the time of day when the request was received.

It uses a 24-hour clock in hh:mm format.

Time-of-Day

An integer that represents the day of the week when the request was

received, where 0 represents Sunday and 6 represents Saturday.

Day-Of-Week

A string containing the date and time when the request was received.

It uses a 24-hour clock in yyyy:mm:dd:hh:mm format.

Date-Time

To implement the sample policy for Dynamic Access Control, you must complete the

following steps:

• “Step 1 – Modifying the Default FSM for DAC.”

• “Step 2 – Defining the DAC Policies” (page 312)

Step 1 – Modifying the Default FSM for DAC

To modify the default radius.fsm file for DAC, complete the following steps:

Sample Policy Implementations 311