Manualshelf

HP-UX AAA Server A.08.00.01 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software
12345678910
MS-CHAP v2 for OTP Authentication
HP-UX AAA Server A.08.00.01 supports MS-CHAP v2 for OTP authentication. OTP
support for MS-CHAP v2 is compatible with RFC 4226.
The following functions are supported for MS-CHAP v2:
Validate OTP
Validate Password
Validate OTP and Password
Store OTP
Proxy the OTP and password to another RADIUS server for OTP and password
validation
For more information on MS-CHAP v2 for OTP Authentication, see the “OATH
Standards-Based OTP Authentication” chapter in the HP-UX AAA Server A.08.00.01
Administrator’s Guide.
Obsolescence of Features and Their Replacements
Starting with the HP-UX AAA Server A.08.00.01 release, some authentication methods
are obsolete. The following describes the obsolete authentication methods and their
corresponding replacements:
EAP-LEAP
The EAP-LEAP authentication method is obsolete in this release of the HP-UX AAA
Server. The EAP-LEAP authentication method can be replaced by the EAP-PEAP
authentication method. HP recommends that you use EAP-PEAP in place of EAP-LEAP
for improved security. Unlike EAP-LEAP, EAP-PEAP supports mutual authentication
and uses an encrypted tunnel to transmit the user's credentials. For more information
on EAP-PEAP, see the Securing LAN Access With EAP chapter in the HP-UX AAA Server
A.08.00.01 Administrator’s Guide..
Oracle Authentication
The Oracle authentication module is obsolete in this release of the HP-UX AAA Server.
The Oracle authentication module is supported using the SQL Access feature. HP
recommends that you set up your HP-UX AAA Server to interact with the Oracle
database using the SQL Access feature. For more information on implementing the
SQL Access feature, see the HP-UX AAA Server A.08.00.01 Administrator’s Guide.
SecurID authentication
The SecurID authentication is obsolete in this release of the HP-UX AAA Server. The
SecurID authentication can be replaced by Open AuTHentication (OATH)
standards-based One-Time Password (OTP) authentication. OATH is an industry-wide
collaboration to develop open-reference architecture for strong authentication. The
OATH standards-based OTP authentication solution supports hardware and software
10 HP-UX AAA Server A.08.00.01 Release Notes