DOC HOME SITE MAP MAN PAGES GNU INFO SEARCH PRINT BOOK
 
Configuring the Point-to-Point Protocol (PPP)

Configuring the authentication database

The authentication database holds information that the local system needs to authenticate remote systems and users, or that a remote system needs to authenticate the local host or users to it. For each name that is to be authenticated either locally or remotely, the database must hold a secret value or password that is associated with the name.

To add or modify authentication settings for a system or a user:

  1. In the PPP Manager, select View -> Authentication to view the names that currently have entries defined in the authentication database.

  2. To add an entry to the database, select Edit -> Add.

    To change an existing authentication database entry, select the name from those listed, and then select Edit -> Modify.

  3. Enter the following information for the entry in the authentication database:

    Name
    An identifier for an entry in the authentication database. It is the name of a system or user that PPP uses to look up entries in the database.

    Enable CHAP secrets
    Select Yes if CHAP secrets are to be associated with the name, then click on CHAP, and enter the following information:

    Local secret
    The secret that the remote host (the peer) must know to authenticate with the local host (the authenticator) using CHAP.

    Remote secret
    The secret that the remote host (the authenticator) knows when the local host (the peer) authenticates with it using CHAP.

    NOTE: A CHAP secret must not contain any NULL characters. You can use one of the following codes to specify a non-printing character:

    \ooo
    where ooo is an octal number

    \xhh
    where hh is a hexadecimal number
    For example, you would use ``\007'' or ``\x07'' to represent <Ctrl>G (ASCII BEL) You should enter a backslash itself as ``\\''.

    Click on OK when you have finished defining the secrets.


    Enable PAP passwords
    Select Yes if PAP passwords are to be associated with the name, then click on PAP, and enter the following information:

    Local password
    The password that the remote host (the peer) must know to authenticate with the local host (the authenticator) using PAP.

    Remote password
    The password that the remote host (the authenticator) knows when the local host (the peer) authenticates with it using PAP.

    NOTE: A PAP password must not contain any NULL characters. You can use one of the following codes to specify a non-printing character:

    \ooo
    where ooo is an octal number

    \xhh
    where hh is a hexadecimal number
    For example, you would use ``\007'' or ``\x07'' to represent <Ctrl>G (ASCII BEL) You should enter a backslash itself as ``\\''.

    Click on OK when you have finished defining the passwords.


    Enable login password
    Select Yes if the name is associated with a user account with pppsh(1M) as the login shell, then click on Login, and enter the following information:

    User ID
    The number of the PPP user's account. If you are creating a new user, a free user ID will be suggested.

    Password
    Enter the user's password.

    Confirm password
    Confirm the user's password.
    Click on OK when you have finished defining the account details.

  4. Click on OK when you have finished defining the database entry.
To remove an entry from the authentication database:

  1. In the PPP Manager, select View -> Authentication to view the currently defined authentication database entries.

  2. To delete an authentication entry, select it from those listed, and then select Edit -> Delete.

  3. Click on OK when asked to confirm that you want to delete the entry.
© 2004 The SCO Group, Inc. All rights reserved.
UnixWare 7 Release 7.1.4 - 22 April 2004