NAME

  S_RFC3315_21.4.2_MultiAuthOption.seq - Message validation to check without multiple Authentication option

TARGET

  Server

SYNOPSIS

  S_RFC3315_21.4.2_MultiAuthOption.seq [-tooloption ...]
  -pkt S_RFC3315_21.4.2_MultiAuthOption.def 
  -tooloption: v6eval tool option. See also DHCPv6.def

INITIALIZATION

Network Topology

          TN(Client1)  
             |
Link0 -------+-----------+--------------- 3ffe:501:ffff:100::/64
                         |
                       NUT(Server1)

Verification Points

   Any DHCP message that includes more than one authentication option
   MUST be discarded.

Configuration

DHCP realm: DHCPv6.TEST.EXAMPLE.COM
Client DUID: 00:01:00:01:00:04:93:e0:00:00:00:00:a2:a2
Key id: 1
Shared secret key: TAHITEST_VALID12

Device Name Device Type I/F Assigned Prefix Link Local Addr MAC Addr

Server1 NUT Link0 3ffe:501:ffff:100::/64 NUT's Linklocal address NUT's MAC address

Client1 TN Link0 3ffe:501:ffff:100::/64 fe80::200:ff:fe00:a2a2 00:00:00:00:a2:a2

TEST PROCEDURE

       NUT     TN
        |       | 
        |       | initialize NUT (as a DHCPv6 Server)
        |       | 
        | <---- | Solicit w/ multiple Authtication Option
        | --->X | Advertise w/ Authtication Option (*1)
        |       |

JUDGEMENT

  (*1) PASS: If NUT received solicit message that includes more than one 
             authentication option, NUT MUST discard it.

TERMINATION

N/A

REFERENCE

  see also RFC3315
  21.4.2. Message Validation
  21.4.5 Server Considerations for Delayed Authentication protocol
  22.11 Authentication Option

`Device Name`	`Device Type`	`I/F`	`Assigned Prefix`	`Link Local Addr`	`MAC Addr`
`Server1`	`NUT`	`Link0`	`3ffe:501:ffff:100::/64`	`NUT's Linklocal address`	`NUT's MAC address`
`Client1`	`TN`	`Link0`	`3ffe:501:ffff:100::/64`	`fe80::200:ff:fe00:a2a2`	`00:00:00:00:a2:a2`