HP-UX AAA Server A.08.00.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

141

142

143

144

145

146

147

148

149

150

Basic or Typical Configuration....................................................................................182

Advanced Configuration.............................................................................................183

Advanced OTP Authentication Configuration Concepts......................................183

Attributes for Configuring OTP Authentication..............................................188

Advanced Deployment Scenarios..........................................................................194

Validating OTP Alone.......................................................................................195

Configuring Two-Factor Authentication..........................................................197

OTP or Password Validation at External RADIUS Server................................205

Predefined Mapping and Conversion Functions........................................................212

Sample Configuration Files.........................................................................................212

The sqlaccess.config Sample File..................................................................212

Sample Policy Files.................................................................................................215

The oath-request-ingress.grp Sample File...........................................216

The oath-reply-egress.grp Sample File..................................................216

The oath-proxy-egress.grp Sample File..................................................217

17 Configuring EAP-SIM and EAP-AKA Authentication Methods......................................................219

EAP-SIM............................................................................................................................219

Overview.....................................................................................................................219

EAP-SIM Authentication Using HP-UX AAA Server.................................................220

Features........................................................................................................................222

Benefits........................................................................................................................223

Configuring EAP SIM..................................................................................................223

EAP-SIM Client Configuration..............................................................................223

EAP-SIM User Credential Lookup Configuration.................................................223

EAP-SIM Realm-Based Configurations.................................................................224

Realm-Based EAP-SIM Configuration Information in authfile........................224

Realm-Based EAP-SIM Configuration Information in EAP.authfile................227

Global EAP-SIM Configuration in aaa.config........................................................230

EAP-AKA..........................................................................................................................231

Overview.....................................................................................................................231

EAP-AKA Authentication Using HP-UX AAA Server...............................................231

Features........................................................................................................................232

Benefits........................................................................................................................233

Configuring EAP-AKA................................................................................................234

EAP-AKA Client Configuration.............................................................................234

EAP-AKA User Credential Lookup Configuration...............................................234

EAP-AKA Realm-Based Configurations................................................................235

Realm-Based EAP-AKA Configuration Information in authfile......................235

Realm-Based EAP-AKA Configuration Information in EAP.authfile..............237

Global EAP-AKA Configuration in aaa.config......................................................242

Fast Re-Authentication.....................................................................................................243

Configuring for Fast Re-Authentication......................................................................243

Configuring for Fast Re-Authentication in EAP.authfile.................................243

150 Table of Contents