Alcatel-Lucent 8950 AAA Computer Accessories User Manual


 
............................................................................................................................................................................................................................................................
Administering the 8950 AAA SystemConfiguring 8950 AAA Operators
11-2
365-360-001R6.0
Issue 1, December 2008
............................................................................................................................................................................................................................................................
There are four basic types of administrators for a 8950 AAA system, as follows:
Table 11-1 8950 AAA–Types of Administrators
Types of Administrators Description
Administrative User This is the System Administrator specified during
installation. The Administrative User has the
following privileges:
Complete read/write access to all files
Full permissions to run all Administration
interface commands for the RADIUS, USS,
RMI, and Configuration servers
Control of all security files
Access to all SMT panels
Internal User This is a special user used for internal
communication between scripts and 8950 AAA
Servers. The access permissions for this user are
stored in the Operators file.
Please refer to “Operators Tab” on page 5 for
more information about Operators.
Universal State Server User This user is used for communication within the
High Availability Universal State Server (HA-
USS) for replication of USS information.
For more information, please refer to the High
Availability-Universal State Server (HA-USS)
Technical Note.
System Operator System Operators are users that have configurable
permissions to files, the Administrative Interface,
and SMT panels. The Administrative User
(described above) configures permissions for
System Operators. The user record and its
permissions can be accessed from either the
Operators file or via a RADIUS Server. System
Operators stored in the Operators file can be
authenticated by basic password comparison as
well as a variety of hashed (encrypted) passwords.
Please refer to Table 11-6 on page 12 for a
detailed list of supported password types.