HP-UX AAA Server A.08.00.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

151

152

153

154

155

156

157

158

159

160

Adding a Group.....................................................................................................273

Modifying a Group................................................................................................274

Deleting a Group....................................................................................................274

Adding a Server.....................................................................................................275

Modifying a Server.................................................................................................279

Deleting a Server....................................................................................................279

Cloning a Server.....................................................................................................279

Administering HP-UX AAA Servers Using HP-UX AAA Server Admin Tool

(Command Line)..........................................................................................................282

rad_admin Syntax..................................................................................................282

Examples of Administering Multiple HP-UX AAA Servers.................................283

Administering HP-UX AAA Servers Using Interactive User Interface.................283

Disaster Recovery of the HP-UX AAA Server Manager..................................................284

19 Configuring the HP-UX AAA Server for Client Functionality .......................................................286

Overview...........................................................................................................................286

CLIENT AATV..................................................................................................................287

Configuring CLIENT AATV........................................................................................287

Working of the CLIENT AATV...................................................................................287

Supported APIs.................................................................................................................289

Internal Attributes and Mapping Functions.....................................................................290

20 Configuring the HP-UX AAA Server for Dynamic Authorization..................................................292

Dynamic Authorization Overview...................................................................................292

HP-UX AAA Server and Dynamic Authorization...........................................................292

Processing of Dynamic Authorization Requests..............................................................293

Configuring for Dynamic Authorization..........................................................................295

Basic Configuration.....................................................................................................296

Advanced Configuration.............................................................................................297

Migrating Existing SQL Access Deployments for Dynamic Authorization..........297

Configuring Multiple HP-UX AAA Servers as a Group........................................299

Configuring for Disconnect and CoA Request Processing...............................301

Dedicated HP-UX AAA Servers for Dynamic Authorization..........................306

Dynamic Authorization in Authorize Only Mode................................................312

Configuring for Dynamic Authorization in Authorize Only Mode.................312

Configuring for Proxy Functionality.....................................................................315

Configuring for Dynamic Authorization Proxy Functionality.........................316

Configuring for Failover........................................................................................316

Security Consideration in Dynamic Authorization...............................................317

Replay Protection..............................................................................................317

Message-Authenticator.....................................................................................319

Reverse Path Forwarding Check for Proxies....................................................319

Sample Configuration Files..............................................................................................321

The client-request-init.grp.dynauth Sample File......................................322

The client-reply-ingress.grp.dynauth Sample File....................................322

152 Table of Contents