HP-UX AAA Server A.08.02.10 Administrator's Guide HP-UX 11i v3 (T1428-90093, November 2013)

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

3. If you are adding a new proxy entry, click Create to submit the new proxy to the Server

Manager.

If you are modifying an existing entry, click Modify to submit changes made to the proxy entry

to the Server Manager.

Click Cancel to return to the Proxy screen without making any changes to your server

configuration.

4. From the navigation tree, click Save Configuration.

5. On the Save Configuration screen that appears, click Save.

NOTE: Clicking Save saves the entire server configuration (access devices, proxies, local

realms, users, and server properties) to the servers you specify.

Forwarding Authentication and Dynamic Authorization Requests From a Proxy Server

To forward authentication requests from a proxy server, complete the following steps:

1. Follow the steps listed in “Creating or Modifying a Proxy” (page 83).

2. In the Proxy Configuration Form, configure the options described in Table 18.

Table 18 Options for Forwarding Requests

DescriptionOption

All requests originating from the realm listed in this drop-down list will be forwarded to

the remote server. To add a realm to the list, select Add Realm from the list. To modify

Realms to forward

or delete a listed realm, select the realm name from the drop-down list. When you add

or modify a realm, you specify the realm name and whether its accounting messages

should be forwarded to the remote server. By default, accounting messages are

forwarded to the proxy server.

This port number value overrides the servers startup switches that specify the UDP port

used to relay authentication requests. The default (when no value is entered in this field

and no startup switch is specified) is 1812.

Authentication relay

port

This port number value overrides the servers startup switches that specify the UDP port

used to relay accounting requests. The default (when no value is entered in this field

and no startup switch is specified) is 1813.

Accounting relay port

Enter the UDP port number of the dynamic authorization server to which the HP-UX AAA

Server must send the dynamic authorization requests. The default value is 3799.

Dynamic Authorization

Relay Port

Enter the number of client retry requests the HP-UX AAA Server must send to perform a

client function, such as Disconnect or Change of Authorization. The default value is 2.

Retry Count

Specifies the time interval between two successive client requests. The HP-UX AAA Server

sends a client retry request at the end of the specified retry interval if the initial request

does not receive a response from the respective server. The default value is 3.

Retry Interval

When receiving a response from a remote server, Yes will instruct the server to append

all the forwarded A-V pairs to new A-V pairs included in the response. This setting is

useful when a remote server does not return all of the A-V pairs that it received.

Append Attributes

3. Click Create.

4. From the Navigation pane, click Save Configuration.

5. On the Save Configuration screen that appears, click Save.

CAUTION: Clicking Save saves the entire server configuration (access devices, proxies,

local realms, users, and server properties) to the servers you specify.

NOTE: By default, accounting requests originating from the realm are also forwarded to the

remote server.

Creating or Modifying a Proxy 85