-:- Rameshkumar

Successfully Architect, Design, Built, Implement, Manage and Administered - HP BSA Suite. EMail I'D -:- RameshKumar132@gmail.com BB Pin -:- 3230B5CF

Saturday, December 10, 2011

HP Network Automation 9.10 :: How to over raid TACACS/Radius authentication?

In HP Network Automation 9x, the default authentication is via either TACACS or Radius or Active Directory, I have been thinking there must be a way over raid those primary authentication and let the local user to authenticate locally from HPNA DB.

Finally I figured out,

In the HPNA Install path /opt/NA/jre, there is an adjustable_options.rcx file, as given below:

[root@hpna910 jre]# pwd/opt/NA/jre
[root@hpna910 jre]# ls -als adjustable_options.rcx
12 -rw-r----- 1 root root 5083 Dec  8 18:22 adjustable_options.rcx
[root@hpana910 jre]#


Add the following strings for local user authentication via local database. 
<option name="security/local_auth/enabled">true</option>
    <array name="security/local_auth/accounts">
              <value>NASUSER</value>
              <value>ramesh</value>
</array>

The important thing, after local authentication strings are added into the adjustable_options.rcx, we DON'T need to restart the HPNA components, the local authentication will work on the fly.

I have tested couple of times the above theory. It is working fine for me without any issue.

Please test it and let me know if there is any issue.

-:- Rameshkumar
EMail ID : RameshKumar132@gmail.com
Blog : Rameshkumar132.blogspot.com