HP-UX AAA Server A.08.00.01 Administrator's Guide
Table 17-7 EAP.authfile Configuration Parameters
DescriptionParameter
The Fast-Reauth-Lookup parameter
specifies an AATV and an Xstring parameter
Fast-Reauth-Lookup
for this AATV. This AATV is invoked to map
a fast re-authentication identity to the user's
real identity and full authentication context.
If this parameter is not configured, fast
re-authentication support is disabled for the
realm.
HP-UX AAA Server provides an AATV,
SIMAKA-ReauthCacheLookup, for this
function.
There is no default value.
The Fast-Reauth-Update parameter
specifies an AATV and an Xstring parameter
Fast-Reauth-Update
for this AATV. This AATV is invoked to
update the mapping of a fast re-authentication
identity to a user's real identity. If this
parameter is not configured, fast
re-authentication support is disabled for the
realm.
HP-UX AAA Server provides the
SIMAKA-ReauthCacheUpdate AATV for
this function.
There is no default value.
This parameter specifies an upper limit for the
number of subsequent fast re-authentications
Max-Number-Of-Reauths-Before-Full-Auth-Is-Required
allowed before a full authentication needs to
be performed.
The valid range is 1 to 65,535.
Specifies a realm that ensures where a fast
re-authentication is targeted. While providing
Fast-Reauth-Realm
a fast re-authentication identity, the server also
includes a realm to help ensure that the
subsequent fast re-authentication be targeted
to the server, which holds the full
authentication context if internal caching,
rather than an external database, is used to
save the fast re-authentication context.
As the maximum length of a fast re-auth NAI
cannot exceed 253 characters, and because the
length of the fast re-auth user name is 10
characters, the Fast-Reauth-Realm value
must not exceed 242 characters. If the fast
244 Configuring EAP-SIM and EAP-AKA Authentication Methods