HP-UX AAA Server A.08.00.01 Administrator's Guide
Table 17-12 EAP.authfile Configuration Parameters (continued)
DescriptionParameter
The HP-UX AAA Server provides the
SIMAKA-PseudonymDecrypt AATV for
algorithm-based pseudonym identity support. The
following conditions apply if this AATV is
configured:
• The server forces non-random pseudonym
generation for this realm.
• If no Pseudonym-Algorithm-Key-*
parameters are defined in the aatv.SIMAKA{}
block of the aaa.config file, pseudonym
support is disabled.
• If at least one of the above mentioned keys is
defined, and the
Pseudonym-Algorithm-Current-Key is not
defined in the aatv.SIMAKA{} block of the
aaa.config file, or does not refer to a defined
key, generation of new pseudonyms is disabled,
but existing pseudonyms can be looked up.
There is no default value.
This parameter specifies an AATV and an Xstring
parameter for this AATV. This AATV is invoked to
Pseudonym-Update
update the mapping of a pseudonym to a user's real
identity. Pseudonym support using an algorithm
does not require a Pseudonym-Update AATV.
There is no default value.
The Pseudonym-Lifetime parameter specifies
the lifetime of such a generated random character
pseudonym.
Pseudonym-Lifetime
After the specified duration has elapsed from the
time the pseudonym was first assigned, the
pseudonym becomes invalid, independent of the
number of times the pseudonym was used.
The valid range is 1 to 31,622,400 (1 second to 366
days).
The default value is 1,209,600 seconds (14 days).
The
Generate-Random-Character-Pseudonyms
Generate-Random-Character-Pseudonyms
parameter indicates whether the server generates
pseudonyms by algorithm (value = no) or if the
server generates random character pseudonyms
(value = yes).
The valid values are Yes and No.
The default value is No
254 Configuring EAP-SIM and EAP-AKA Authentication Methods