HP-UX AAA Server A.08.02.10 Administrator's Guide HP-UX 11i v3 (T1428-90093, November 2013)
E Syntax of the Decision Files in Earlier Versions of the
HP-UX AAA Server
This appendix describes the syntax of the decision files that are present in earlier versions of the
HP-UX AAA Server. While decision files created using this syntax are supported in this version of
the HP-UX AAA Server, HP encourages customers to use the syntax described in Chapter 27
(page 301) to create new decision files. This is because the new syntax offers more advanced
customization options (such as configuring OTP authentication).
Following is the syntax of a decision file in earlier versions of the HP-UX AAA Server:
Group Name {
Condition {
expression
}
Reply {
reply-items
. . .
}
}
where:
Group Name Begins the group entry by specifying a name for the group.
Condition Block that contains an expression of A-V pairs. They will evaluate to true or false
to determine if the user belongs to the group. If the condition is not defined in
the group entry, the group matches all the requests.
Reply Block that contains a list of one or more reply items that are added to the request
if the condition evaluates to true.
Expressions
The simplest expression is a comparison of two A-V pairs with one relative operator. You can use
relative and Boolean operators to create an expression with various combinations of A-V pairs.
Table 121 lists the operators that you can use.
Table 121 A-V Pair Expression Operators
DescriptionOperator
Equal to=
Not equal to!=
Greater than>
Less than<
Greater than or equal to>=
Less than or equal to<=
Logical AND&&
Logical OR||
Logical NOT!
You can also use parentheses to nest expressions. Line breaks are not significant.
Table 122 illustrates some possible expressions that you can use to control access depending on
the dial-in phone number and time of the call.
Expressions 443