Mercurial > hg > freeDiameter
annotate doc/app_diameap.conf.sample @ 1508:eb19aa48829f
Add 3GPP TS 29.343 V15.1.0 (2019-09)
Add AVPs:
- Origin-App-Layer-User-Id, UTF8String, code 3600, section 6.4.2
- Target-App-Layer-User-Id, UTF8String, code 3601, section 6.4.3
- ProSe-Function-ID, OctetString, code 3602, section 6.4.4
- ProSe-Request-Type, Unsigned32, code 3603, section 6.4.5
- PDUID, OctetString, code 3604, section 6.4.6
- Application-Data, UTF8String, code 3605, section 6.4.7
- Allowed-Suffixes-Number, Unsigned32, code 3606, section 6.4.8
- Monitor-Target, Grouped, code 3607, section 6.4.9
- ProSe-Code-Suffix-Mask, Grouped, code 3608, section 6.4.10
- Suffix-Code, OctetString, code 3609, section 6.4.11
- Suffix-Mask, OctetString, code 3610, section 6.4.12
- Banned-User-Target, Grouped, code 3611, section 6.4.17
- Metadata-Indicator, Unsigned32, code 3612, section 6.4.18
author | Luke Mewburn <luke@mewburn.net> |
---|---|
date | Sat, 04 Apr 2020 21:28:45 +1100 |
parents | 64e55fc10ab3 |
children |
rev | line source |
---|---|
425
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
1 ##### a sample Configuration file for DiamEAP |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
2 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
3 # MySQL Database settings |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
4 # Specify connection parameters for DiamEAP MySQL database: |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
5 # - username and password to connect to the MySQL Server |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
6 # - databaseserver : the MySQL server location. It can be the IP address or the host name where MySQL server is located. 'localhost' can be used as the location if the server is locatd in the same host than DiamEAP. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
7 # - database_name : the created database for DiamEAP. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
8 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
9 # Syntax : |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
10 # DiamEAP_MySQL = "<username>" , "<password>" , "<databaseserver>" , "<database_name>"; |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
11 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
12 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
13 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
14 ##### Extensible Authentication Protocol (EAP) Methods Plugins ##### |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
15 # An EAP method is identified by its EAP method name, EAP TYPE, VENDOR and path to its EAP Method Plugin. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
16 # Optionally, path to a configuration file of plugin can also be provided. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
17 # Location of plugins and their configuration files can be provided by the absolute pathor the relative path from the location configured in cmake. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
18 # An EAP Method Plugin can not be loaded twice. Only the first added method will be loaded. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
19 # Any EAP Method plugin with a same EAP_TYPE value than an already loaded one will be discarded. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
20 # EAP Methods are added in the same order they are added to the the configuration file. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
21 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
22 # Syntax : |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
23 # Load_plugin = "<EAP method name>":EAP_TYPE:VENDOR:"<Path to EAP method >":"<Path to configuration file>"; |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
24 # |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
25 # Example: |
441
70eabd4f8a31
Cleanups in documentation
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
425
diff
changeset
|
26 # Load_plugin = "EAP MD5":4:0:"/extensions/eap_md5.emp":""; |
70eabd4f8a31
Cleanups in documentation
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
425
diff
changeset
|
27 # Load_plugin = "EAP TLS":13:0;"/extensions/eap_tls.emp":"/doc/eap_tls_plugin.diameap.conf"; |
70eabd4f8a31
Cleanups in documentation
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
425
diff
changeset
|
28 |
70eabd4f8a31
Cleanups in documentation
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
425
diff
changeset
|
29 Load_plugin = "EAP Identity":1:0:"/extensions/eap_identity.emp":""; |
425
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
30 |
565
64e55fc10ab3
added configuration parameters for DiamEAP and EAP-TLS
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
441
diff
changeset
|
31 # Enable/disable checking User's Identity. If disabled, default parameters value will be used for authentication and authorization attributes. |
64e55fc10ab3
added configuration parameters for DiamEAP and EAP-TLS
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
441
diff
changeset
|
32 # Default values are defined in database for 'Default User'. |
64e55fc10ab3
added configuration parameters for DiamEAP and EAP-TLS
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
441
diff
changeset
|
33 Check_User_Identity = 1; |
425
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
34 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
35 # In addition to authentication DiamEAP can be configured to check authorization of authenticated users. If set to 0 authorization is disabled, otherwise enabled.( by default disabled). |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
36 Authorization = 1; |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
37 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
38 # This parameter specify the maximum number of seconds provided to the access device for responding to an EAP request. (by default set to 30 seconds) |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
39 #Multi_Round_Time_Out=30; |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
40 |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
41 # After receivin a number of invalid EAP packets, DiamEAP reject the authentication by responding with Failure Authentication. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
42 # The default value of maximum number of invalid EAP packets is set to 5 packets. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
43 # The value of maximum invalid EAP packets can be modified by adding a new value. |
0c6e50a5291d
New app_diameap Diameter EAP Application
Souheil Ben Ayed <souheil@tera.ics.keio.ac.jp>
parents:
diff
changeset
|
44 #MAX_Invalid_EAP_Packets=5; |