Remote Authentication Dial In User Service (RADIUS)
RFC 2058
Document | Type |
RFC - Proposed Standard
(January 1997; No errata)
Obsoleted by RFC 2138
|
|
---|---|---|---|
Authors | Allan Rubens , Steve Willens , Carl Rigney , William Simpson | ||
Last updated | 2013-03-02 | ||
Stream | IETF | ||
Formats | plain text html pdf htmlized bibtex | ||
Stream | WG state | (None) | |
Document shepherd | No shepherd assigned | ||
IESG | IESG state | RFC 2058 (Proposed Standard) | |
Consensus Boilerplate | Unknown | ||
Telechat date | |||
Responsible AD | (None) | ||
Send notices to | (None) |
Network Working Group C. Rigney Request for Comments: 2058 Livingston Category: Standards Track A. Rubens Merit W. Simpson Daydreamer S. Willens Livingston January 1997 Remote Authentication Dial In User Service (RADIUS) Status of this Memo This document specifies an Internet standards track protocol for the Internet community, and requests discussion and suggestions for improvements. Please refer to the current edition of the "Internet Official Protocol Standards" (STD 1) for the standardization state and status of this protocol. Distribution of this memo is unlimited. Abstract This document describes a protocol for carrying authentication, authorization, and configuration information between a Network Access Server which desires to authenticate its links and a shared Authentication Server. Table of Contents 1. Introduction .......................................... 3 1.1 Specification of Requirements ................... 4 1.2 Terminology ..................................... 4 2. Operation ............................................. 5 2.1 Challenge/Response .............................. 6 2.2 Interoperation with PAP and CHAP ................ 7 2.3 Why UDP? ........................................ 8 3. Packet Format ......................................... 9 4. Packet Types .......................................... 12 4.1 Access-Request .................................. 12 4.2 Access-Accept ................................... 14 4.3 Access-Reject ................................... 15 4.4 Access-Challenge ................................ 16 5. Attributes ............................................ 17 5.1 User-Name ....................................... 20 5.2 User-Password ................................... 21 5.3 CHAP-Password ................................... 22 5.4 NAS-IP-Address .................................. 23 Rigney, et. al. Informational [Page 1] RFC 2058 RADIUS January 1997 5.5 NAS-Port ........................................ 24 5.6 Service-Type .................................... 25 5.7 Framed-Protocol ................................. 27 5.8 Framed-IP-Address ............................... 28 5.9 Framed-IP-Netmask ............................... 29 5.10 Framed-Routing .................................. 29 5.11 Filter-Id ....................................... 30 5.12 Framed-MTU ...................................... 31 5.13 Framed-Compression .............................. 32 5.14 Login-IP-Host ................................... 33 5.15 Login-Service ................................... 33 5.16 Login-TCP-Port .................................. 34 5.17 (unassigned) .................................... 35 5.18 Reply-Message ................................... 35 5.19 Callback-Number ................................. 36 5.20 Callback-Id ..................................... 37 5.21 (unassigned) .................................... 37 5.22 Framed-Route .................................... 38 5.23 Framed-IPX-Network .............................. 39 5.24 State ........................................... 39 5.25 Class ........................................... 40 5.26 Vendor-Specific ................................. 41 5.27 Session-Timeout ................................. 43 5.28 Idle-Timeout .................................... 44 5.29 Termination-Action .............................. 44 5.30 Called-Station-Id ............................... 45 5.31 Calling-Station-Id .............................. 46 5.32 NAS-Identifier .................................. 47 5.33 Proxy-State ..................................... 48 5.34 Login-LAT-Service ............................... 49 5.35 Login-LAT-Node .................................. 50 5.36 Login-LAT-Group ................................. 51Show full document text