Manuals / Brands / Computer Equipment / Computer Accessories / Alcatel-Lucent / Computer Equipment / Computer Accessories

Alcatel-Lucent 8950 AAA manual

1 476

Download 476 pages, 6.5 Mb

Alcatel-Lucent

8950 AAA (Authorization, Authentication, Accounting)

User’s Guide | Release 6.0

365-360-001R6.0

ISSUE 1

DEC 2008

Contents

Main Page Contents Part 1: Configuration Tools Navigation Pane Page Part II : Stats C ollect ing Nav igatio n Pane Part III: Logging Tools Navigation Pane Part IV: Monitoring Tools Navigation Pane Part V: F ile Tools N avigat ion Pane Part VI: Database Tools Navigation Pane Part VII: Other chapters Part VIII: Appendix Page About this information product Where to go First How This Manual Is Organized Page Page Conventions Tabl e 1-1 lists the typographical conventions used throughout this manual. italics Users Guide and Reference AAA Recom mended Re adin g Obtaining Technical Support Page Part 1: Configuration Tools This part consolidates the chapters related to Configuration Tools in the SMT Navigation pane. This part includes the following chapters. Page 1 Introduction to 8950 AAA What is 8950 AAA? Page RADIUS Terms Explained Page Page Page 2 8950 AAA Server Management Tool Overview Purpose of the Server Management Tool Starting the Server Management Tool Page The Server Management Tool User Interface Page Page Each menu contains a set of commands as described in Tabl e 2-1. Page Page Page Page Page Page Page Page 2-16 3 Server Management Tool Command Set SMT menus and their commands Page Page Page Page Tabl e 3-1 describes the fields of the SMT Preferences Panel. Page Page Page Page Managing Data in SMT Panels is due to space limitations on some of the panels. Sizing Table Columns Installing the PolicyAssistant and the Policy Flow Editor Page Page Page 4 Managing 8950 AAA Servers Configuring Server Properties Poli cy S erv er t ab Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Table4-11 lists the configurable entities of this panel. Page Page Page Page Page Page Page Page Table4-17 lists the configurable entities of this panel. Universal State Server tab Page Page Page Page Page Page Page Page Page Configuration Server tab Page Table4-23 lists the configurable entities of this panel. 5 Configuring 8950 AAA Client Properties Introduction Configuring Clients Page The Radius Clients tab Tabl e 5-2 explains each of these fields and the field descriptions. Page Page The Diameter Peers tab Page Tabl e 5-8 explains each of these fields and the field descriptions. The TACACS+ Clients tab Page Page The Client Classes tab Page Page Page Page Page Page 6 Configuring 8950 AAA Realm Routing Table Properties Configuring Realm Routing Table Page Page Page 7 Configuring 8950 AAA Remote ly Remote Configuration Page Page Page Page Page Page Page 8 Using the 8950 AAA Policy Flow Editor Policy Flow Editor Page Policy Flow Files Method Configuration Page Page Page Page Method Dispatch Section Page Page Page 9 Using the 8950 AAA Policy Assistant in Server Management Tool Understanding PolicyFlow, the PolicyAssistant, and the Policy Wizard Installing the PolicyAssistant Preparing to Create Your First Policy Using the Policy Wizard Page Page Page Page Page Page Page Page Page Page Page Understanding and Creating Attribute Sets Page Page Adding Attribute Sets to Your Policy Creating Attribute Sets Page Page Defining a Failure Mode Page Reviewing Your Policy Using the PolicyAssistant Page Page Page Page Saving Your Policies Advanced Authentication Options Page Page Page Page Page Page Advanced Attribute Set Options Page 10 Configuring 8950 AAA USSv2 USSv2 Configuration Page Page Page Page Page Once all the properties have been specified, click OK to continue. Page 11 Configuring 8950 AAA Operators Administering the 8950 AAA System There are four basic types of administrators for a 8950 AAA system, as follows: 8950 AAA Operators Panel Page Page Page Page Page Page Table11-5 describes the fields/attributes and descriptions in the RADIUS Authentication tab. Adding an Operator Page Adding an Access Rule Page Page Modifying a System Operator Page Page 12 Configuring Simple Address Manager Simple Address Manager Configuration Page Page Page Page Page 13 Configuring USS Address Manager USS Address Manager Configuration Page Page Page Page Page Part II: Stats Collecting Page 14 Stats Collector The Stats Collector Stats Collector Panel Page Page Page Page 15 Configuring Reports The Configure Reports Panel Page Page Page Page Page Page Page 16 Message Logging 8950 AAA Message Overview Logging Tools Server Log Messages Page Page Log Channels Page Page Page Every panel has a fixed section that contains four fields, as described in Table16-3. Page Page Page Log Channel Configuration Panel Tabs Page Page Page Table16-6 explains the fields and the field descriptions that you will specify in this screen. see Notes on the Naming of Size Based Files Table16-8 explains the fields and the field descriptions that you will specify in this screen. Notes on the Naming of Time Based Files Page Page Table16-11 explains the fields and the field descriptions that you will specify in this Table16-12 explains the fields and the field descriptions that you will specify in this screen. mentioned in Table16-12. Page Page Page Table16-15 explains the fields and the field descriptions that you will specify in this Page Page Log Rules Page Page Page Page Page Page Page Page Page Page Page Page Part IV: Monitoring Tools Page 17 Server Statistics Monitoring Server Statistics Server Statistics Panel capabilities are available. Table17-1 lists each screen name and the information that it monitors. Page The Interval values are described in Table17-3. Authentication Statistics Counters are described in Table17-4. Page Page Page Page Page Page Page Page Page Page Page Page Page The State Server Requests window is shown in the Figure17-14. Page Page Page Page Page Page Page Page Table17-16 describes the information that is displayed about each running thread. Sessions/ Counters/ Indices Panel Page Page USS Address Statistics Panel A detail description of the pool selected is shown in the below portion. 18 Using LiveAdministrator 8950 AAA LiveAdministrator Accessing the LiveAdministrator Panel General Info License Information System Information Garbage Collection Page Files in Use Admin Scripts Properties Cache Entries Peer Con tro l Advanced Page Page Page Part V: File Tools Navigation Pane This part consolidates the chapters related to File Tools in the SMT Navigation pane. This part includes the following chapters. Page 19 Creating and Managing User Profiles with Files The User File The PolicyAssistant and User Files The SMT User Files Panel Page Page Page Page Page Page Page Page Page Page Page Page Creating an Attribute Set File 20 8950 AAA Dictionary Editor Accessing the Dictionary Editor Panel Vendors Tab Page Attributes Tab Page Page Page Page Diameter Applications Tab Page Page Page 21 Managing files The File Manager Panel Page Page Page the PolicyAssistant. There are six action buttons at the top of the File Manager panel, as shown in Figure21-2. Page Page Page Page Tai l p an el Page 21-12 Figure 21-13 Tail Panelwith opened file 22 8950 AAA Certificate Manager Types of Certificates The Certificate Manager Panel Page Page Page Page Page Requirements for Using the Certificate Manager Types of Certificates in Certificate Manager Page Page Page Page Page Page Page Page Procedures for Creating Certificates Page Notes on Using Certificates How to Configure for a TLS Demo Out of the Box Page Page Page Page Page Page Page Page 22-30 Page Page 23 Creating and Managing User Profiles with the Built-in Database Understanding Database Users Logging in to the Database Creating and Managing User Profiles Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Understanding Database SQL Tool Page Page Managing Hypersonic Database Users Page Page Part VII: Other chapters Page 24 Server Diagnostics and Control Commands Server Diagnostics and Control List of Server Commands Page Page Page Page Page Page The following section lists the diag normal commands and their arguments: Description: Lists the normalized list. Command Format: Description: Lists the normalized list statistics. Command Format: Page Page Page Page Page Page Page Description: Lists available areas. Command Format: Description: Clears all logging rules. Command Format: Description: Deletes a logging rule. Command Format: logrule delete <num> Description: Inserts a logging rule. Command Format: Description: Lists logging rules. Command Format: Description: Deletes a logging rule. Description: Loads logging rules from a file. Command Format: Description: Moves a logging rule. Command Format: Page Page Page Page Page Page Page Page Page Command Format: Description: Stops all entries for a NAS. Command Format: Description: Reloads session state from the given file. Description: Displays selected or all data from one or all the entries. Command Format: Description: Displays entry data from one or all entries. Command Format: Page Page Description: Saves all session state to thgiven file. Command Format: Page Part VIII: Appendix Page A Supplementary Information Displaying the Built-in Web Interface Displaying the RADIUS Server Administration Interface Displaying the Configuration Server Administration Interface Figure A-3 Telnet SessionConfiguration Server Administration Address A-4 Glossary Page Page Page Page Page Page Page Page Page Index