HP-UX AAA Server A.08.02 Administrator's Guide
Configuring for Disconnect and CoA Request Processing.........................................221
Dedicated HP-UX AAA Servers for Dynamic Authorization.......................................224
Dynamic Authorization in Authorize Only Mode.........................................................229
Configuring for Dynamic Authorization in Authorize Only Mode..............................229
Configuring for Proxy Functionality............................................................................231
Configuring for Dynamic Authorization Proxy Functionality......................................232
Configuring for Failover...........................................................................................232
Security Consideration in Dynamic Authorization........................................................233
Replay Protection...............................................................................................233
Message-Authenticator.......................................................................................234
Reverse Path Forwarding Check for Proxies............................................................235
Sample Configuration Files................................................................................................236
The client-request-init.grp.dynauth Sample File.................................................................236
The client-reply-ingress.grp.dynauth Sample File...............................................................237
The sqlaccess.config.dynauth Sample File.......................................................................237
The sqlaccess.config.dynauth_server_group Sample File...................................................238
The dbsetup.sql.dynauth_server_group Sample File..........................................................239
IV Integrating the HP-UX AAA Server With External Services...........................241
21 LDAP Authentication..........................................................................244
LDAP Server Compatibility ...............................................................................................244
Related LDAP Documentation ............................................................................................244
Authentication with LDAP .................................................................................................244
Configuring the LDAP Server ........................................................................................244
The HP-UX AAA Server LDAP Schema.......................................................................244
To Configure Netscape Directory Server v6................................................................245
To Configure iPlanet Directory Server v5....................................................................245
To Configure OpenLDAP 2.0.x.................................................................................245
22 SQL Access......................................................................................247
SQL Access Overview......................................................................................................247
SQL Access Concepts..................................................................................................248
RADIUS Attribute to SQL Statement Mapping.............................................................248
Mapping Functions.................................................................................................249
Conversion Functions..............................................................................................249
SQL Action Processing and Result Handling...............................................................250
Implementing SQL Access.................................................................................................250
Sample Implementation Files.........................................................................................250
sqlaccess.config Sample File....................................................................................250
dbsetup.sql Sample File...........................................................................................252
Finite State Machine Sample....................................................................................253
Pre-requisites for SQL Access........................................................................................253
Database Server and Schema..................................................................................253
Database Security..............................................................................................253
High Availability................................................................................................254
Database Client.....................................................................................................254
Shared Library Path Configuration........................................................................254
Database Client Connector Libraries.........................................................................254
SQL Access Implementation Details................................................................................254
sqlaccess.config File Configuration................................................................................255
Database Connection Definition...............................................................................256
SQL Actions...........................................................................................................257
Mapping Syntax.....................................................................................................258
RAD Mapping...................................................................................................259
DBC Mapping...................................................................................................260
Contents 9