HP-UX AAA Server A.08.02.10 Administrator's Guide HP-UX 11i v3 (T1428-90093, November 2013)

ManualsBrandsHP ManualsSoftwareHP-UX AAA Server (RADIUS) Software

100

(Yes), the AAA Server ignores any "host/" prefix in the user name passed from the client request.

The default setting is Yes (enable). If this parameter is enabled, the HP-UX AAA Server can still

authenticate supplicants that do not have “authenticate as a computer” configured.

Local Users File Properties

Enable (Yes) to enable case-insensitive searching in the default users file. The default setting is

No (case sensitive search is disabled by default).

ProLDAP Properties

Clicking ProLDAP Properties takes you to the ProLDAP Properties screen where you can modify the

properties described in Table 25.

Table 25 ProLDAP Properties

DescriptionOption

Determines whether OpenLDAP debug messages must be

logged in the HP-UX AAA Server radius.debug file. To

Debug

disable logging OpenLDAP messages, enter a value of 0.

To enable logging, enter a value of -1. By default, logging

is disabled.

Number of milliseconds that the HP-UX AAA Server waits

for an LDAP server while trying to establish the TCP

connection. The default value is 300 milliseconds.

Connection Timeout (milliseconds)

Number of seconds that an LDAP connection remains open

if the HP-UX AAA Server is unable to successfully perform

any LDAP operation. The default value is 60 seconds.

Timeout

Number of seconds that the HP-UX AAA server waits before

attempting to reconnect to an LDAP server, if there are no

active connections. The default value is 1 second.

Retry Wait

Used if any realm is configured with two or more LDAP

Servers and at least one of them is connected. Specifies

Retry Wait for Alternate Servers

the number of seconds the HP-UX AAA Server waits before

attempting to reconnect to the LDAP servers that are not

connected. The default value is 60 seconds.

Used if any of the LDAP directories are configured to use

SSL. Specifies the path of the file that contains one or more

Certificate Authority File

CA certificates used to authenticate LDAP directory server

certificates. There is no default value.

Used if any of the LDAP directories are configured to use

SSL. Specifies the path of a directory that contains

Certificate Authority Directory

Certificate Authority Certificates in separate individual files.

If the Certificate Authority file is specified, Certificate

Authority file is always used before Certificate Authority

directory. There is no default value.

AAA Server As A Client Properties

Clicking AAA Server As A Client Properties takes you to the AAA Server As A Client Properties

screen where you can modify the properties described in Table 26.

98 Modifying Server Properties