XYGATE User Authentication Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

151

152

153

154

155

156

157

158

159

160

XYGATE

User Authentication

™

(XUA) 1.85 Reference Manual

Chapter 15. Mapping NonStop IDs to Alternative Authentication Databases

XYPRO Technology Corporation 131 Proprietary and Confidential

15.2.1 APPEND Operator

The APPEND operator causes the part of the name matched by the regular expression

pattern to be appended with the supplied string.

Syntax:

MAP RE:"<RX pattern>" APPEND <"string">

Example 1 below will add the string "–SecureID " immediately after any userid

provided at logon resulting in OPER1-SecureID, which is OPER1’s ID in the RSA

database.

Example 1: Using the APPEND operator

MAP RE:"^.*$" APPEND "-SecurID"

Example 2 below shows how to append the LDAP bind name to pass to the LDAP

server, so user OPER1 will be authenticated via LDAP as user

OPER1@NETWORK.LOCAL.

Example 2: Using the APPEND operator to append the LDAP bind name

MAP RE:"^.*$" APPEND "@network.local"

15.2.2 DELETE Operator

The DELETE operator is used to completely remove a portion of the Guardian user or

alias name. For example, if the NonStop userid HELPDESK.OPER1 has to be

matched to the RSA server account id OPER1, you could begin by deleting the

GROUP name.

Syntax:

MAP RE:"<RX pattern>" DELETE

The DELETE operator deletes the string that matches the RX pattern from the target.

Example 3 below tells XUA to strip the group name from any user name being

authenticated. The expression "^.*\." matches anything from the beginning of a

string up to and including the first dot. If this exact rule is applied to a group of users

logging on with the Guardian ID of the form GroupName.MemberName will be

authenticated in RSA, by stripping off the GroupName, and using only the

MemberName as the RSA ID.

Example 3: Using the DELETE operator

MAP RE:"^.*\." DELETE

So OPER.TOM1 would be mapped (converted) to TOM1, which would then be sent to

RSA for authentication. DBA.BARBARAH would be converted to BARBARAH.

VCONTROL.HPARSONS would be converted to HPARSONS.

Multiple mapping rules within the same UAGroup may be combined to accomplish the

final mapping.