Authentication Interface

The MPS supports an interface for authenticating connections from Intel AMT platforms and for authenticating Socks connections from management consoles. The interface supports a username and password as input and returns a Boolean indication (true  = authenticated).

Users can create their own authentication mechanism. The SDK includes the source and binary for a sample dll that performs authentication via a table lookup in a text file. Note that the Intel AMT authentication dll and the Socks authentication dll must have different names.

Authentication dlls should contain the following prototype:

extern "C" __declspec(dllexport)

bool Authenticate(string userName ,string userPassword , string
  paramStr  ,string &errorString);

The first two parameters are the username and password to be authenticated.

paramStr is the string in DllParameters in the MPS configuration file, used as a way to pass parameters to the dll.

The dll should return a string in errorString if there was an error during execution. The MPS will write this message to the log.

See the Add a Management Presence Server use case for the Intel AMT MPS username and password limitations.

Table Lookup Sample

The SDK includes two versions of the table lookup dll: AMTFileAuth.dll and SocksFileAuth.dll. The dlls are identical except for their names. They search a text file for an entry that matches the username and password. The text files are in the format <username>:<password>, one entry per line. See the files AMTAuthFile.txt and SocksAuthFile.txt for example of this format.

 

Copyright © 2006-2022, Intel Corporation. All rights reserved.