Configuring the CSI RADIUS provider

AuthenticationMethod

PAP

Authentication method to use. Valid values are PAP and CHAP.

SharedSecret

The secret shared between the RADIUS server and the host where the login module is executed.

RadiusServerHostName

Name of the host to connect to the RADIUS server.

RadiusServerAuthPort

1812

Radius server authentication port.

MaxChallenges

3

Maximum number of challenge prompts propagated to the client.

ErrorMsgMapping.[index].regex

Specifies the regular expression to match a RADIUS server error message. For example: ErrorMsgMapping.1.regex=someRegEx ErrorMsgMapping.1.failureCode=failureCodeValue

The properties with the same index map the someRegEx to the failureCodeValue. The index is used only to map the regular expression to the failure code; it does not signify the order in which the regular expressions are used to match the RADIUS server error message. The order in which the regular expressions are defined determines the order in which they are used. The index can also be a string value as follows:

ErrorMsgMapping.map.regex=someRegEx ErrorMsgMapping.map.failureCode= failureCodeValue2

ErrorMsgMapping.[index]. failureCode

Specifies the error code that a regular expression specified with the same index maps to. You can specify the failure code as an integer or a string.

If a string value is specified it should correspond to the constant defined in com.sybase.security.core.AuthenticationFailureWarning with any of the following valid prefixes:

• FAILURE_CODE.1, 15

• ACCOUNT_LOCKED

• PASSWORD_EXPIRED

If an invalid value is specified, the corresponding regular expression is ignored.

caseSensitiveMatching

false

Specifies case sensitive matching to use when matching the RADIUS server error messages using the regular expressions.