Alcatel-Lucent 8950 AAA User Manual page 151

Using the 8950 AAA Policy Assistant in Server
Management Tool
............................................................................................................................................................................................................................................................
Table 9-1 Authentication Types
Option
Windows Security Access Manager
UNIX System
UNIX Password File
RSA ACE/Server (SecurID)
Secure Computing SafeWord Server
LDAP Directory
Microsoft Active Directory
Automatic Authentications
Accept All Request
............................................................................................................................................................................................................................................................
365-360-001R6.0
Issue 1, December 2008
Description
Uses Windows NT or Security Access
Manager (SAM) to verify the password in
the user request. This option is only
supported on Microsoft Windows platforms.
Uses UNIX system functions to verify the
password in the user request. This option is
only supported on a UNIX platform.
Reads the password in the user's entry
directly from a UNIX password or shadow
file. The password read from the file is used
to authenticate the request in place of any
password that is in the user profile.
The UNIX/Linux password can be one of the
following formats: UNIX Crypt, MD5, SHA,
or SSHA. Although primarily used on UNIX
platforms, this option can be used to read
users from a UNIX password style file on
any platform.
Uses an RSA Ace Server to verify the one
time password from a SecurID token.
Uses the SafeWord Server from Secure
Computing to verify the one time password.
Connects to an LDAP Server using the User-
Name and password from the request. If the
LDAP connection is successful, the user is
authenticated.
Connects to a Microsoft Active Directory
Server using the User-Name and password
from the request. If the Active Directory
connection is successful, the user is
authenticated.
These options skip the password check and
either automatically accept or reject all users.
The password is not checked. However, other
checks defined in this policy, including
session limits, are still enforced.
Using the Policy Wizard
9 - 1 1