eap-simaka-sql Plugin

Purpose

The eap-simaka-sql plugin for libcharon provides a backend for EAP-SIM and EAP-AKA to read triplets/quintuplets from a relational database.

The plugin is disabled by default and can be enabled with the ./configure option

--enable-eap-simaka-sql

Don’t forget to enable actual either the eap-sim or eap-aka plugin.

Configuration

The SQL schema has two tables, one for triplets (EAP-SIM) and one for quintuplets (EAP-AKA). Each table maps EAP-Identities to triplets/quintuplets. There is a SQLite schema available. Create the database and fill the database as in the example.

The eap-simaka-sql plugin is configured using the following options in the charon.plugins.eap-simaka-sql section of strongswan.conf:

Key Default Description

Key	Default	Description
database		Database URI
remove_used	`no`	Remove triplets/quintuplets after use

database

Database URI

remove_used

no

Remove triplets/quintuplets after use