HP-UX AAA Server A.08.00.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

431

432

433

434

435

436

437

438

439

440

When a policy is evaluated, it can return an event to the FSM to direct the subsequent

processing of a request. The policy can return events to the FSM in the following ways:

• Exit Command: Using the Exit command terminates the evaluation of the policy.

The specified event is returned to the FSM.

• Default Event: If evaluation of a decision file reaches the end without encountering

an Exit command, the default event is returned to the FSM. The default event is

ACK.

• Error Conditions: When an error occurs, an ERROR event is returned to the FSM.

Sample Policy Implementations

HP-UX AAA Server A.08.00.01 contains sample FSM and decision files to support

policies for the following implementations:

• “Dynamic Access Control.”

• “ DNIS Routing” (page 435)

The following sections discuss these implementations in detail.

Dynamic Access Control

Dynamic Access Control (DAC) enables you to provide different levels of network

access to the same users depending on the following:

• Access periods

• Account and password expiry date and time

Dynamic Access Control uses three Interlink-specific attributes to check the values in

user requests. Table 27-8 describes the interlink-specific attributes used by DAC.

Table 27-8 Interlink-specific Attributes Used by DAC

DescriptionAttribute

A string that contains the time of day when the request was received.

It uses a 24-hour clock in hh:mm format.

Time-of-Day

An integer that represents the day of the week when the request was

received, where 0 represents Sunday and 6 represents Saturday.

Day-Of-Week

A string containing the date and time when the request was received.

It uses a 24-hour clock in yyyy:mm:dd:hh:mm format.

Date-Time

To implement the sample policy for Dynamic Access Control, you must complete the

following steps:

• “Step 1 – Modifying the Default FSM for DAC.”

• “Step 2 – Defining the DAC Policies” (page 434)

Step 1 – Modifying the Default FSM for DAC

To modify the default radius.fsm file for DAC, complete the following steps:

Sample Policy Implementations 433