HP-UX AAA Server A.08.00.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

321

322

323

324

325

326

327

328

329

330

The sqlaccess.config.dynauth_server_group Sample File

The sqlaccess.config.dynauth_server_group file contains the SQL actions

required to implement the dynamic authorization functionality for Disconnect and

CoA requests when multiple HP-UX AAA Servers are configured as a group. You can

modify these SQL actions based on requirements.

Table 20-2 lists the SQL actions listed in the

sqlaccess.config.dynauth_server_group file to support Dynamic

Authorization.

Table 20-2 SQL Actions that Support Dynamic Authorization in Groups

DescriptionSQL Action

Creates a user session entry in the session table. This SQL

action is used only when multiple HP-UX AAA Servers

are configured as a group.

StartSessionServerGroup

Creates a row for the HP-UX AAA Server in the

RAD_SERVER_TABLE, if a row does not exist. If a row

UpdateServerTable

exists for the HP-UX AAA Server, the SQL action executes

a stored procedure that updates the row. A mapping

function is used to retrieve a unique server name.

Executes a stored procedure every second. The stored

procedure distributes the expired sessions among the live

HP-UX AAA Servers in the group.

DistributeDisconnectSessions

Queries the session table for sessions assigned to the HP-UX

AAA Server, to process Disconnect requests. The SQL action

CreateDisconnectReqServerGroup

also uses the information in the expired session to create a

Disconnect-Request. The SQL action implements the

multi-row functionality to retrieve all expired sessions

using a single query.

Updates the status of the session entry to indicate that it is

already processed for Disconnect-Request. This SQL

UpdateDisconnectReqServerGroup

action is used only when multiple HP-UX AAA Servers

are configured as a group.

Updates the status of the session entry to indicate that the

Disconnect-Request has timed out. This SQL action is

TimeoutDisconnectReqServerGroup

used only when multiple HP-UX AAA Servers are

configured as a group.

Removes the session entry for which a Disconnect-ACK

was received.

CleanupDisconnectedSession

Removes the session entry after receiving

Disconnect-ACK. Also, releases the IP address of the first

session entry that was removed.

CleanupDisconnectedSession-DHCP

Updates the status of a session entry for which

Disconnect-NAK was received. This SQL action is used

SuspendDisconnectedSessionServerGroup

324 Configuring the HP-UX AAA Server for Dynamic Authorization