XYGATE User Authentication Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

161

162

163

164

165

166

167

168

169

170

XYGATE

User Authentication

™

(XUA) 1.85 Reference Manual

Chapter 15. Mapping NonStop IDs to Alternative Authentication Databases

XYPRO Technology Corporation 134 Proprietary and Confidential

15.2.7 REPLACE Operator

Syntax:

MAP RE:"<RX pattern>" REPLACE <"string">

The REPLACE operator would delete the part of the string that matches the regular

expression and insert the specified quoted string in the same place. The rule in the

Example 9 below will cause user HELPDESK.OPER1 authenticated by RSA as user

SECUREID-OPER1:

The rule in Example 9 below will replace a user’s GroupName with the string

"SecureID-". Thus HELPDESK.OPER1 will be converted to SecureID-OPER1.

Example 9: Replacing a part of the userid with new string value:

MAP RE:"^.*\." REPLACE "SecureID-"

15.3 Testing the Userid Mapping

Before you run XUA, you should test your configurations.

Important! XUA does not run in warning mode. The initial configuration must be

tested before the software is enabled as the authentication SEEP in Safeguard.

Once the configuration is done, you may run XYGATEUA in ACCESS, EXPLAIN, or

SERVER modes. Refer to Chapter 16, “What-if Testing” starting on page 137 for

complete instructions for testing XUA authorization and ID mapping.

Note: Only EXPLAIN mode shows the ID mapping (see example below).

Example – EXPLAIN mode testing

1> RUN XYGATEUA EXPLAIN

Access check: logon "qa-rsa8jxj" * 0,0

Alias : qa-rsa8jxj

User : QA.NEXT8JXJ (222,212) on 2007-01-16 10:48:13.801319

User Expires : * None *

Password Expires : * None *

Password May Change : * None *

Password Must Change : Every 90 days

Password Expiry Grace : 21 days

Last Logon : 2006-09-13 13:42:13.162144

Last Unsuccessful Lgn : 2007-01-16 10:46:22.574923

Fail count : 13

Static fail count : 121

Frozen/Thawed : Thawed

Last Modification Time: 2007-01-16 10:46:22.574923

From User : 000,000 NULL.NULL

Requestor : $NONE $NONE.NONE.NONE

Ancestor : $NONE $NONE.NONE.NONE

To User : 222,212 qa-rsa8jxj (alias)

Port : $NONE $NONE.NONE.NONE

Dialog ID : 001 Tag=0 Dialog=On

State : 01 Initial