Manualshelf

HP-UX AAA Server A.07.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software
919293949596979899100
8. From the navigation tree, click Save Configuration
If you have multiple remote servers, you will be prompted to select and confirm
the servers where the realm configuration will be applied.
Configuring Realms for LDAP
This section discusses how to configure realms for Lightweight Directory Access Protocol
(LDAP). These realms can be configured only after setting up the LDAP server. See
Chapter 17: “LDAP Authentication” (page 204) for information on setting up an LDAP
server.
To configure each realm using LDAP, you must specify the directory server, search
base, and other parameters necessary to find profiles for the users in the realm.
Complete the following steps to configure realms for LDAP:
1. From the navigation tree, click Local Realms.
2. On the Local Realms screen, click New Local Realm to open the Local Realm
Attributes screen.
3. In the Name field, enter the name of the realm to map to the defined LDAP location.
This name does not have to be a DNS host name. However HP recommends that
the realm name corresponds with the domain name. This way, the user recognizes
the user@realm syntax which resembles their e-mail address.
4. In the User Authentication Field, select the authentication methods to authenticate
users for the realm. If you are using TTLS-PAP, TTLS-MSCHAP, or TTLS-CHAP,
select Enable RADIUS Standard. For all other methods, select Enable EAP and
choose at least one EAP method from the drop-down list.
5. In the User Profile Storage field, select LDAP.
The user storage parameters for LDAP appear when you select LDAP from the
User Profile Storage drop-down list. These parameters identify a section of the
directory tree on one or more LDAP servers where the HP-UX AAA software will
attempt to retrieve user profiles.
6. In the User Storage Parameters Field, select New LDAP Directory or the name of
an existing LDAP Directory.
7. In the LDAP screen that appears, configure the LDAP directory using the
information described in Table 8-3.
Table 8-3 Values for Configuring Realms for LDAP
DescriptionValue
Start of a directory configuration. Give a name to the directory,
which can be an arbitrary string. If the name contains spaces or tabs,
the string must be enclosed in single or double quotes.
Directory Name
96 Configuring Realms