Manualshelf

XYGATE User Authentication Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series
131132133134135136137138139140
XYGATE
®
User Authentication
(XUA) 1.85 Reference Manual
Chapter 13. Configuring the RSA SecurID Interface
XYPRO Technology Corporation 104 Proprietary and Confidential
13.7 RSA-Related UAGroup (UAACL) Keywords
This section describes the RSA-related keywords that are used to divert authentication
to an RSA Authentication Manager (formerly the ACE/Server). The XYGATEUA
UAACL file can contain the following RSA-related keywords:
MAP RE:"<regular expression>" <operator>
RSA_AUTHENTICATE { ON | OFF | OPTIONAL }
RSA_REQUIRE_PASSWORD { ON | OFF }
13.8 Designing the User Schema and ID Mapping in the UAACL File
Two RSA keywords can be set in the UACONF file, the UAACL file or both:
For the UACONF file, refer to pages 242 and 244 respectively:
RSA_AUTHENTICATE { ON | OFF | OPTIONAL }
RSA_REQUIRE_PASSWORD { ON | OFF }
For the UAACL file, refer to pages 283 and 284 respectively:
RSA_AUTHENTICATE { ON | OFF | OPTIONAL }
RSA_REQUIRE_PASSWORD { ON | OFF }
If you set these values in the UACONF file, they are global. If you did not set values for
these keywords in the UACONF file or wish to override the UACONF value for certain
groups of users, you will have to put the appropriate keyword and value in the
appropriate UAGroup(s) of the UAACL file.
Note: The value in the UAACL file always overrides the value in the UACONF file.
The MAP keyword is used to convert the NonStop server user’s Logon Name (an alias
or a Guardian user name) to the appropriate RSA user account. Each UAGroup may
include one or more MAP keywords to perform the step-by-step conversion of the
NonStop server logon name to the RSA account. Refer to Chapter 15, “Mapping
NonStop IDs to Alternative Authentication Databases” starting on page 129 for a
complete reference on mapping.