000022545 - Class attributes mapped to user extension data are not migrated to RSA Authentication Manager 6.1 during upgrade

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022545
Applies ToRSA ACE/Server 5.x
RSA Authentication Manager 6.0.x
RSA RADIUS Server 6.1 Powered by Funk Steel-Belted RADIUS
All UNIX platforms
Microsoft Windows Server 2003 SP1
Microsoft Windows 2000 SP4
IssueClass attributes mapped to user extension data are not migrated to RSA Authentication Manager 6.1 during upgrade
CauseThe Funk RADIUS that ships with RSA Authentication Manager 6.1 does not support a direct mapping of User Extension data to a RADIUS profile via a class attribute in the same way as previous versions. In version 6.1, the user extension data can be sent directly to the RADIUS server without needing a profile mapping (assuming it is formatted properly). A conversion tool is provided to do the translation after the upgrade.
ResolutionUsing Database Administration, go to System > Edit System Parameters > Edit Radius policy and check "Send user extension to Radius" (see the online help for more information). You can then run the "path"\prog\ rsaextconv utility to convert the user extension data into the proper format. rsaextconv -f -d will output to a log without changes, and rsaextconv -f -e will implement the changes. NOTE: A profile is not needed for the data to be returned via RADIUS.

See page 53 of the RSA Authentication Manager 6.1 for Windows Installation Guide or page 76 of the RSA Authentication Manager 6.1 for UNIX Installation Guide for more information.
Legacy Article IDa30882