Manualshelf

HP-UX AAA Server A.08.02.10 Administrator's Guide HP-UX 11i v3 (T1428-90093, November 2013)

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software
21222324252627282930
Figure 5 Authentication Steps
Authentication Steps
Following lists the authentication steps followed by the HP-UX AAA Server:
1. After the HP-UX AAA server receives an Access-Request, it attempts to match the client making
the request to an entry in the clients file. The server attempts to authenticate a request only
if a match can be made.
2. The iaaaUsers action checks the local users file. In this step, the User-Name attribute value
from the Access-Request is used to find an entry for the user in the /etc/opt/aaa/users
file.
If User-Name matches an entry, the server retrieves that profile and then authentication
moves to step 5.
If User-Name does not match an entry, authentication moves to step 3.
3. If the iaaaUsers action does not find a matching user profile in the users file, the FSM
calls the iaaaRealm action. The iaaaRealm action parses the User-Name attribute value
for a realm name, and searches authfile to determine the data store where the user profiles
for the parsed realm are located. A default entry can be used to handle any realms that are
not explicitly configured in authfile.
Handling an Access Request 29