HP-UX AAA Server A.08.00.01 Administrator's Guide
Table 17-5 EAP.authfile Configuration Parameters (continued)
DescriptionParameter
improve readability. The encoding must be in the
network byte order (big-endian). For more
information, see the example following Table 17–9.
The EAP-AKA protocol requires support for two
features related to the management of sequence
Resync-Update
numbers (SQN). The Resync-Update parameter
specifies an AATV, which provides one of the
features and an Xstring parameter for this AATV.
This AATV is invoked to notify the AuC about
synchronization failures. The reception of an
EAP-Response, AKA, or Synchronization-Failure
message from the client triggers the call to this
AATV.
This feature is optional. The need to configure this
parameter depends on whether you require this
feature.
There is no default value.
The EAP-AKA protocol requires support for two
features related to the management of sequence
Auth-Result-Update
numbers (SQN). The Auth-Result-Update
parameter specifies an AATV, which provides one
of the features and an Xstring parameter for this
AATV. This AATV is invoked to notify the AuC
about the results of an authentication attempt. The
completion of an EAP-AKA authentication
sequence, triggers the call to this AATV.
This feature is optional. The need to configure this
parameter depends on whether you require this
feature.
There is no default value.
The following is an example of the EAP.authfile file that configures the EAP-AKA
protocol for an AKA realm:
#######################################################################
### Append the following to /etc/opt/aaa/EAP.authfile
##################################################################
eapakarealm.com -EAP EAP "comment"
{
EAP-Type AKA
{
# Following parameter specifies the name of the AKA algorithm to generate
# vector. You need not configure these values if the vector is retrieved from
# an external AuC.
AKA-Algorithm "3GPP-Milenage"
Resync-Update SQLAccess ActionId=ResyncSQN
EAP-AKA 239