Table of Contents
- About This Guide
- Objectives
- Audience
- Documentation Conventions
- Related Juniper Networks Documentation
- Obtaining Documentation
- Documentation Feedback
- Requesting Support
- Managing Routers and Virtual Routers
- Overview
- Directory Model for Router Objects
- Local IP Address Pools on JUNOSe VRs
- Adding Routers and VRs to the Directory
- Adding All Operative Routers and Configured JUNOSe VRs with SDX Admin
- Adding Routers Individually
- Adding VRs Individually
- Configuring Interface Classification for Routers
- Updating Local IP Address Pools for JUNOSe VRs
- Prerequisites
- Using SDX Admin
- Using the poolRepublish Command
- Connecting to Routers
- Using Policy Editor
- Using SDX Admin
- Integrating JUNOSe Routers
- Overview
- Integration Tasks
- Configuring the SAE to Manage JUNOSe Routers
- Configuring the JUNOSe Router to interact with the SAE
- Configuring the SNMP Server on the JUNOSe Router
- Starting the SDX Client on the JUNOSe Router
- Stopping the SDX Client on the JUNOSe Router
- Adding JUNOSe Routers to the Directory
- Disabling Interactions Between the SAE and the JUNOSe Router
- Monitoring Interactions Between the SAE and the JUNOSe Router
- Troubleshooting
- Integrating JUNOS Routing Platforms
- Overview
- Integration Tasks
- Configuring the SAE to Manage JUNOS Routing Platforms
- Configuring the JUNOS Routing Platforms to Interact with the SAE
- Adding JUNOS Routing Platforms to the Directory
- Disabling Interactions Between the SAE and the JUNOS Routing Platform
- Monitoring Interactions Between the SAE and the JUNOS Routing Platform
- Troubleshooting
- Troubleshooting Problems with the SDX Software Process
- Troubleshooting Problems with Interfaces
- Troubleshooting Problems with Services
- Deleting All Interface Sessions and Services
- Mapping Object Model to LDAP Schema
- LDAP Overview
- Mapping the Object Model to LDAP Schema
- LDAP Schema Files
- Object Classes
- Object Class Tables
- Object Representing Folders
- Subscriber Objects
- Service Template Objects
- Subscription Profile Objects
- Policy Objects
- Network-Device Objects
- Workflow and OSM Schema Elements
- Configuration and System Management
- Attribute Types
- Structure Rules
- Content Rules
- Content Rules Table
- Name Forms
- Integrating Sun ONE Directory Server
- Overview
- About the Sun ONE Add-On Package
- LDAP Directory Instance
- uid-uniqueness Plug-in
- Password Storage Scheme
- Schema Extension
- Database Settings
- SDX Skeleton
- Access Control
- Loading Sample Database
- Sun ONE Directory Server Tasks
- Obtaining the Sun ONE Directory Server Software
- Installing the UMCiDSa Add-on Package
- Configuring Sun ONE Directory Server Instance
- Starting, Stopping, and Restarting Sun ONE Directory Server
- Integrating the DirX Directory Server
- Overview
- About the DirX Add-On Package
- LDAP Directory Instance
- Schema Extension and Database Settings
- Directory Tree Structure
- Access Control
- SDX Skeleton
- Loading Sample Database
- Obtaining the DirX Directory Server Software
- Preparing to Install the DirX Directory Server
- Creating a New Directory User
- Installing the DirX Directory Server
- Installing the UMCdirxa Add-On Package
- Configuring the DirX Directory Server
- Uninstalling DirX Directory Server
- Starting and Stopping the DirX Directory Server
- dirx user Environment
- Superuser Environment
- Backing Up the Directory
- Backing Up the OpenLDAP Database
- Restoring the OpenLDAP Database
- Backing Up the DirX Database
- Restoring the DirX Directory Database
- Backing Up the Sun ONE Database
- Restoring the Sun ONE Database
- Access Control Scheme
- Directory Configuration
- Directories
- User Class
- Permissions
- Access Controls
- Access Controls for the Entire Tree
- Access Controls Against Objects from Type cachedAuthentication Profile and UmcConfiguration
- Access Controls Against sspServiceProfile
- Access Controls Against umcRadius Person and umcUser
- Access Controls Against RADIUS Profiles
- Access Controls Against the Policy Subtree
- Access Controls Against the Parameter Subtree
- Access Controls for System Management
- Access Controls Against the Lock Subtree
- Access Controls Against Subscriber, Retailer, and Service Profiles
- Access Controls Against the Network Subtree
- Access Controls Against Services and Mutex Group Objects
- Access Controls Against the Workflow Subtree
- Access Controls Against the User Subtree
- Access Controls Against Service, Policy, and Global Parameter Objects
- Administrative Access Rights
- Activation Access Rights
- Subscription Access Rights
- Substitution Access Rights
- Common Access Rights for All Managers
- Directory-Specific Access Control Implementation
- DirX
- OpenLDAP
- Netscape / iPlanet Directory Server
- Assigning Operators to an Operator Group
- Deleting Operators from an Operator Group
- Integrating Steel-Belted Radius/SPE
- System Requirements
- Installing the Software
- First-Time Installations
- Previous Installations
- Initial Configuration
- Configuring UDP Ports
- Starting and Stopping the RADIUS Server
- Extending Dictionary Files with JUNOSe Parameters
- Configuring LDAP Authentication
- [Bootstrap] Section
- [Settings] Section
- [Server] Section
- [Server/serverName] Section
- [Search/name] Section
- [Attribute/name] Section
- [Request] Section
- [Response] Section
- Directed Authentication
- Configuration Example
- Customizing the Authentication Log File
- RADIUS Client/Server Configuration
- RADIUS Server Configuration
- RADIUS Client Configuration
- Administration User Interface
- Integrating Merit RADIUS
- System Requirements
- Installing Merit AAA
- LDAP Features
- Configuring UDP Ports
- Starting and Stopping the RADIUS Server
- Extending Dictionary Files with JUNOSe Parameters
- Configuring LDAP Authentication
- Merit AAA Configuration
- Configuring RADIUS Profiles with the LDAP Directory
- Accounting Log File Format
- RADIUS Client/Server Configuration
- RADIUS Server Configuration
- RADIUS Client Configuration
- Testing the Merit AAA Server
- Integrating RAD-Series RADIUS Server
- System Requirements
- Installing the RAD-Series RADIUS Server
- LDAP Features
- Configuring UDP Ports
- Starting and Stopping RAD-Series Server Manager
- Changing the UDP Ports
- Extending Dictionary Files with JUNOSe Parameters
- Configuring LDAP Authentication
- RAD-Series Server Manager Configuration
- Configuring Realm Administration
- Configuring LDAP Settings
- Configuration of RADIUS Profiles with the LDAP Directory
- Accounting Log File Format
- RADIUS Client/Server Configuration
- RADIUS Server Configuration
- RADIUS Client Configuration
- Testing the RAD-Series RADIUS Server
- RADIUS Authorization and Accounting and Flat File Accounting
- RADIUS Authorization
- RADIUS Accounting
- Flat File Accounting
- Index