Figure 127: Configuring EAP-SIM authentication
EAP-AKA Configuration
The AKA authentication module handles EAP-AKA authentication for clients using USIM cards.
Follow these steps to the EAP-AKA module.
1. In EAP-AKA Configuration, verify that the Enable option is selected (default).
This will enable clients using 3G USIM cards to authenticate with AAA services.
2. In EAP-AKA Configuration section, configure the following settings for EAP-AKA access:
• User ID Privacy Support: Click this option to add an Active Secret Key.
• Fast Reauthentication Support: Click this option to enable fast reauthentication, which
is useful when AKA authentication happens frequently.
• Reauthentication Realm: Type the reauthentication realm. The default realm is the realm
from the permanent identity of the client.
• Max Successive Reauthentication: Set the number of allowed reauthentication attempts
before requesting fresh triplets and performing a complete authentication. The default is
256. If you enter 0, reauthentication identities will not generated.
3. In the EAP-AKA Secret Key Configuration section, configure the secret keys, which are
used to encrypt the permanent identity to generate pseudonym and reauthentication identity.
a) Click the Create New option to add a key.
b) In Key, type any text string up to 32 characters.
If you do not specify a secret, pseudonyms will not be generated. If you change this value,
all pseudonyms assigned to currently authenticated clients will be invalidated and they will
require reauthentication.
c) Click Save.
4. In the EAP-AKA Cache Cleanup Configuration section, configure the cleanup time for the
cache to be cleaned. At cleanup time, all the cache entries (except the ones which were used
during the last history length) will be deleted.
SmartCell Gateway 200/Virtual SmartZone High-Scale for Release 3.4.1 Administrator Guide
243
Configuring the System Settings
Configuring Hosted AAA Services
To Next Page
Loading...
Need help?
General
