HP-UX AAA Server A.08.00.01 Administrator's Guide
For more information on the advanced configurations, see “Advanced Configuration”
(page 297).
Advanced Configuration
Advanced configuration typically requires some extra customization of a feature to
suit your needs.
This section addresses the following topics:
• “Migrating Existing SQL Access Deployments for Dynamic Authorization”
(page 297)
• “Configuring Multiple HP-UX AAA Servers as a Group” (page 299)
• “Dynamic Authorization in Authorize Only Mode” (page 312)
• “Configuring for Proxy Functionality” (page 315)
• “Configuring for Failover” (page 316)
• “Security Consideration in Dynamic Authorization” (page 317)
Migrating Existing SQL Access Deployments for Dynamic Authorization
If session management using SQL Access is already configured based on the reference
implementation files delivered with HP-UX AAA Server version A.07.01 or earlier,
you must complete the following additional steps for the Disconnect and CoA
functionalities:
1. To add the additional columns required for dynamic authorization, modify the
session table as follows:
If you are using Oracle, enter the following at the SQL prompt:
SQL> alter table RAD_SESS_TABLE add
(
session_timeout number(11),
from_host varchar2(253),
session_status varchar2(253),
sess_mod_time TIMESTAMP,
filter_id varchar2(253)
);
If you are using MySQL, enter the following at the mysql prompt:
mysql> alter table RAD_SESS_TABLE add
(
session_timeout INT,
from_host varchar(253),
session_status varchar(253),
sess_mod_time TIMESTAMP,
filter_id varchar(253)
);
Configuring for Dynamic Authorization 297