Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Download
Standard view
Full view
of .
Look up keyword
Like this
0Activity
0 of .
Results for:
No results containing your search query
P. 1
Rfc 2139

Rfc 2139

Ratings: (0)|Views: 0 |Likes:
Published by s1504975
This document describes a protocol for carrying accounting
information between a Network Access Server and a shared Accounting
Server.
This document describes a protocol for carrying accounting
information between a Network Access Server and a shared Accounting
Server.

More info:

Published by: s1504975 on Jul 14, 2013
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

07/14/2013

pdf

text

original

 
Network Working Group C. RigneyRequest for Comments: 2139 LivingstonObsoletes:2059April 1997Category: InformationalRADIUS AccountingStatus of this MemoThis memo provides information for the Internet community. This memodoes not specify an Internet standard of any kind. Distribution ofthis memo is unlimited.AbstractThis document describes a protocol for carrying accountinginformation between a Network Access Server and a shared AccountingServer.Implementation NoteThis memo documents the RADIUS Accounting protocol. There has beensome confusion in the assignment of port numbers for this protocol.The early deployment of RADIUS Accounting was done using theerroneously chosen port number 1646, which conflicts with the "sa-msg-port" service. The officially assigned port number for RADIUSAccounting is 1813.Table of Contents 1. Introduction ..........................................2  1.1Specification of Requirements ...................3  1.2Terminology .....................................3  2. Operation .............................................4  3. Packet Format .........................................5  4. Packet Types ..........................................7  4.1Accounting-Request ..............................7  4.2Accounting-Response .............................8  5. Attributes ............................................10  5.1Acct-Status-Type ................................11  5.2Acct-Delay-Time .................................12  5.3Acct-Input-Octets ...............................13  5.4Acct-Output-Octets ..............................14  5.5Acct-Session-Id .................................14  5.6Acct-Authentic ..................................15  5.7Acct-Session-Time ...............................16  5.8Acct-Input-Packets ..............................16 Rigney Informational [Page 1]
 
 RFC 2139RADIUS Accounting April 1997 5.9Acct-Output-Packets .............................17  5.10Acct-Terminate-Cause ............................18  5.11Acct-Multi-Session-Id ...........................20  5.12Acct-Link-Count .................................21  5.13Table of Attributes .............................22 Security Considerations ......................................24References ...................................................24Acknowledgements .............................................24Chair’s Address ..............................................24Author’s Address .............................................251. IntroductionManaging dispersed serial line and modem pools for large numbers ofusers can create the need for significant administrative support.Since modem pools are by definition a link to the outside world, theyrequire careful attention to security, authorization and accounting.This can be best achieved by managing a single "database" of users,which allows for authentication (verifying user name and password) aswell as configuration information detailing the type of service todeliver to the user (for example, SLIP, PPP, telnet, rlogin).The RADIUS (Remote Authentication Dial In User Service) document [4]specifies the RADIUS protocol used for Authentication andAuthorization. This memo extends the use of the RADIUS protocol tocover delivery of accounting information from the Network AccessServer (NAS) to a RADIUS accounting server.Key features of RADIUS Accounting are:Client/Server ModelA Network Access Server (NAS) operates as a client of theRADIUS accounting server. The client is responsible forpassing user accounting information to a designated RADIUSaccounting server.The RADIUS accounting server is responsible for receiving theaccounting request and returning a response to the clientindicating that it has successfully received the request.The RADIUS accounting server can act as a proxy client to otherkinds of accounting servers.Rigney Informational [Page 2]
 
 RFC 2139RADIUS Accounting April 1997Network SecurityTransactions between the client and RADIUS accounting serverare authenticated through the use of a shared secret, which isnever sent over the network.Extensible ProtocolAll transactions are comprised of variable length Attribute-Length-Value 3-tuples. New attribute values can be addedwithout disturbing existing implementations of the protocol.1.1. Specification of RequirementsIn this document, several words are used to signify the requirementsof the specification. These words are often capitalized.MUST This word, or the adjective "required", means that thedefinition is an absolute requirement of the specification.MUST NOT This phrase means that the definition is an absoluteprohibition of the specification.SHOULD This word, or the adjective "recommended", means that theremay exist valid reasons in particular circumstances toignore this item, but the full implications must beunderstood and carefully weighed before choosing adifferent course.MAY This word, or the adjective "optional", means that thisitem is one of an allowed set of alternatives. Animplementation which does not include this option MUST beprepared to interoperate with another implementation whichdoes include the option.1.2. TerminologyThis document uses the following terms:service The NAS provides a service to the dial-in user, such as PPPor Telnet.Rigney Informational [Page 3]

You're Reading a Free Preview

Download
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->