Configuration Statements for SIC Explicit Authentication Routing Rules
Use the following statements to configure explicit routing rules for the SIC at the [edit] hierarchy level:
shared sic group identifier server identifier authentication-route id
shared sic group identifier server identifier authentication-route id editing editing-rule
shared sic group identifier server identifier authentication-route id target {
}
shared sic group identifier server identifier authentication-route id condition user-identity {
(present | not-present);
}
shared sic group identifier server identifier authentication-route id condition user-identity range {
low low;
high high;
}
shared sic group identifier server identifier authentication-route id condition user-identity equals value
shared sic group identifier server identifier authentication-route id condition user-identity does-not-equal value
shared sic group identifier server identifier authentication-route id condition user-identity has-prefix value
shared sic group identifier server identifier authentication-route id condition user-identity has-suffix value
shared sic group identifier server identifier authentication-route id condition realm {
(present | not-present);
}
shared sic group identifier server identifier authentication-route id condition realm range {
low low;
high high;
}
shared sic group identifier server identifier authentication-route id condition realm equals value
shared sic group identifier server identifier authentication-route id condition realm does-not-equal value
shared sic group identifier server identifier authentication-route id condition realm has-prefix value
shared sic group identifier server identifier authentication-route id condition realm has-suffix value
shared sic group identifier server identifier authentication-route id condition request {
}
shared sic group identifier server identifier authentication-route id condition request attribute attribute-name {
(present | not-present);
}
shared sic group identifier server identifier authentication-route id condition request attribute attribute-name range
{
low low;
high high;
}
shared sic group identifier server identifier authentication-route id condition request attribute attribute-name equals value
shared sic group identifier server identifier authentication-route id condition request attribute attribute-name does-not-equal value
shared sic group identifier server identifier authentication-route id condition request attribute attribute-name has-prefix value
shared sic group identifier server identifier authentication-route id condition request attribute attribute-name has-suffix value