Feature Configuration

To configure this feature, use the following configuration:

The following configuration is enabled only when the AMF sends the Nnrf_AccessToken request to the NRF server, when the nf-client is configured.

profile nf-client nf-type nf_type_name 
    oauthenabled { true | false } 
    nf-type-profile nf_type_profile_name 
    locality locality_name 
    priority priority_number 
    service name type service_name type_npcf_am_policy_control 
    endpoint-profile endpoint_profile_details 
    capacity capacity_number 
    uri-scheme http 
    endpoint-name endpoint_name 
    priority priority_number 
    primary ip-address ipv4 ipv4_address 
    primary ip-address port port_address 
    exit 

The following configuration must be done for an NRF endpoint, to which the AMF will send the AccessToken request.

group nrf auth nrf_group_name 
    service type nrf oauth2 
        endpoint-profile endpoint_profile_details 
        capacity capacity_number 
        uri-scheme http 
        endpoint-name endpoint_name 
        priority priority_number 
        primary ip-address ipv4 ipv4_address 
        primary ip-address port port_address 
        exit 

The following configuration must be used to specify auth-groups containing the NRF endpoint details for each NF type.

profile nf-pair nf-type nf_type_name 
    nrf-auth-group nrf_auth_group_name 
    nrf-discovery-group nrf_discovery_group_name 
    locality client client_name 
    locality preferred-server server_name 
    locality geo-server geo_server_name 
    cache invalidation { true | false } timeout timeout_number 
    exit 

NOTES:

  • profile nf-client nf-type nf_type_name —Specify the NF and the profile name.

  • oauthenabled { true | false } —Enable the oauthenabled profile configuration. The default value is false.

  • nf-type-profile nf_type_profile_name —Specify the NF profile name.

  • locality locality_name —Specify the locality.

  • priority priority_number —Specify the priority request. Must be in numbers.

  • service name type service_name type_npcf_am_policy_control —Specify the service name and the type.

  • endpoint-profile endpoint_profile_details —Specify the endpoint profile details.

  • capacity capacity_number —Specify the capacity requirement in number.

  • uri-scheme http —Specify the URI scheme.

  • endpoint-name endpoint_name —Specify the endpoint name.

  • primary ip-address ipv4 ipv4_address —Specify the primary IPv4 address.

  • primary ip-address port port_address —Specify the primary port address.

  • group nrf auth nrf_group_name —Specify the NRF group name to authenticate. Must be a string.

  • service type nrf oauth2 —Specify the service and the type of NRF, which must be authenticated to enable the OAuth2 profile configuration.

  • profile nf-pair nf-type nf_type_name —Specify the nf-type in the profile name to authenticate. Must be a string.

  • nrf-auth-group nrf_auth_group_name —Specify the nrf-auth-group name.

  • nrf-discovery-group nrf_discovery_group_name —Specify the nrf-discovery-group name.

  • locality client client_name —Specify the client name in the locality details.

  • locality preferred-server server_name —Specify the preferred-server or client name in the locality details.

  • locality geo-server geo_server_name —Specify the geo-server name in the locality details.

  • cache invalidation { true | false } —Enable the cache invalidation configuration. The default value is false.

  • timeout timeout_number —Specify the timeout duration in seconds.