Cisco Cisco Packet Data Interworking Function (PDIF)
PDSN Service Configuration Mode Commands
authentication ▀
Command Line Interface Reference, StarOS Release 16 ▄
7709
This option configures the system to attempt to use the Microsoft Challenge Handshake Authentication
Protocol (MSCHAP) to authenticate the subscriber.
A
Protocol (MSCHAP) to authenticate the subscriber.
A
mschap_priority
must be specified in conjunction with this option. Priorities specify which
authentication protocol should be attempted first, second, third and so on.
mschap_priority
must be an integer from 1 through 1000. The lower the integer, the higher the preference.
pap
pap_priority
Default: 2
This option configures the system to attempt to use the Password Authentication Protocol (PAP) to
authenticate the subscriber.
A
This option configures the system to attempt to use the Password Authentication Protocol (PAP) to
authenticate the subscriber.
A
pap_priority
must be specified in conjunction with this option. Priorities specify which authentication
protocol should be attempted first, second, third and so on.
pap_priority
must be an integer from 1 through 1000. The lower the integer, the higher the preference.
PAP is enabled by default as the second highest preference.
msid-auth
Default: Disabled
This option configures the system to attempt to authenticate the subscriber based on their Mobile Station
Identity (MSID).
This option configures the system to attempt to authenticate the subscriber based on their Mobile Station
Identity (MSID).
Usage
Use to specify how the PDSN service should handle authentication and what protocols to use. The flexibility
is given to configure this option to accommodate the fact that not every mobile will implement the same
authentication protocols.
The chassis is shipped from the factory with the authentication options set as follows:
is given to configure this option to accommodate the fact that not every mobile will implement the same
authentication protocols.
The chassis is shipped from the factory with the authentication options set as follows:
allow-noauth disabled
chap enabled with a priority of 1
mschap disabled
msid-auth disabled
pap enabled with a priority of 2
Important:
At least one of the keywords must be used to complete the command.
Example
The following command would configure the system to allow no authentication for subscribers and would
perform accounting using the default NAI-construct of
perform accounting using the default NAI-construct of
username@domain
:
authentication allow-noauth
The following command would configure the system to attempt subscriber authentication first using CHAP,
then MSCHAP, and finally PAP. If the allow-noauth command was also issued, if all attempts to authenticate
the subscriber using these protocols fail, then the subscriber would be allowed access:
then MSCHAP, and finally PAP. If the allow-noauth command was also issued, if all attempts to authenticate
the subscriber using these protocols fail, then the subscriber would be allowed access:
authentication chap 1 mschap 2 pap 3