8950 AAA can read standard system files like the UNIX password file, user files from other RADIUS servers, and data exported from common applications. Data read from files is parsed into individual variables for later use in the PolicyFlow logic.
With 8950 AAA, the standard UNIX system interface can be used for support of NIS/NIS+. The group ID, GCOS, shell, or other data fields can be used to determine service class.
The AuthNt plug-in allows access to r user information from a Windows NT server. Information about local-groups, global-groups and ras-info can be used in the authentication and authorization decision.
8950 AAA includes a copy of Hypersonic database for storage and fast retrieval of user record data. A GUI is provided for maintenance of user accounts.
Server setup, modification, and operation can be managed with a Java remote-management client. For power users, all configuration files can be directly edited using standard text editors.
Users can be authenticated with SecurID cards (RSA Security Inc.) and Defender cards (Axent, Inc).
With 8950 AAA, the remote host can be determined by realm, DNIS, user account information, or any other access-request criteria. Proxy hosts can be selected from a list on a round-robin or random basis. Back-up servers can be defined for fault tolerant operation.
If your network uses PPP PAP authentication, you can store user passwords using secure, one-way encryption.
With 8950 AAA, it is possible to search through a list of possible data sources to find a user record; for example, LDAP, UNIX password file, local database, or a text users file. This capability is essential in migration from one data source to another.
User-session parameters (RADIUS return attributes) can be retrieved based on simple keywords stored in the user record. This feature is great for implementing Classes-of-Service.
Each unique realm on your network can have its own user name-space regardless of your data storage choices.
8950 AAA provides full support for sophisticated SS7 and ISDN (PRI) environments in which an NAS may ask .permission. prior to answering an incoming call.
8950 AAA can read data stored in the most popular user directory structures. Just define your schema and interface with virtually any LDAP server.
With 8950 AAA, you can expand SQL support for user data beyond the bundled database to include virtually any available SQL server. This feature is fully configurable to support virtually any database schema you can design.
Access can be limited based on User-Name, Calling Number, IP Address, or any attribute contained in the user access request.