Manualshelf

AWAN 3883/4/5 Access Server Configuration and Management Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series
201202203204205206207208209210
Configuring Security for Remote Access Users
AWAN 3883/4/5 Access Server Configuration and Management Manual424242-001
13-2
SecurID
SecurID
SecurID is a key-based method of authentication. When SecurID authentication is used,
remote users who dial into the AWAN access server and are prompted for a user name,
PIN number, and password. The AWAN access server sends this information to the
SecurID server. If the user name and password are valid, the SecurID server sends an
authentication acknowledgment to the AWAN access server.
When configured for SecurID, the AWAN access server can use one of two databases to
authorize users to use specific functions. These databases are the local user list database
and the default template for the AWAN access server. If you do not choose an
authorization method, the AWAN access server uses the default template.
Configuring SecurID authentication is explained in Configuring Authentication
on
page 13-4.
XTACACS
XTACACS is a LAN-based host logon/password application for which the AWAN
access server can be a client. When XTACACS authentication is used, the AWAN access
server sends an authorization request to the XTACACS server and waits for an
acknowledgment to be returned.
When configured for XTACACS, the AWAN access server can use one of two databases
to authorize uses to use specific functions. These databases are the local user list
database and the default template for the AWAN access server. If you do not choose an
authorization method, the AWAN access server uses the default template.
Configuring XTACACS authentication is explained in Configuring Authentication
on
page 13-4.
Authorization Methods
The AWAN access server supports the following authorization methods:
User lists
Default template
NetWare Bindery
User Lists
The RAS Management Tool enables you to create a database of users called a user list.
The user list stores the names, passwords, and authorized protocols for users who will
connect to the network through the AWAN access server. There are two types of user
lists:
The local database, which is maintained on the hard drive of the management
workstation.