![background image](http://html2.mh-extra.com/html/patton-electronics/3120/3120_administrators-reference-manual_4046172314.webp)
C • Technical Reference
Model 3120 RAS Administrators’ Reference Guide
314
Configuring a RADIUS server
RADIUS Authentication Procedure
The procedure for RADIUS authentication and authorization is outlined in figure 126:
Figure 126. RADIUS authentication and authorization procedure
1. User dials into the RAS and establishes a connection.
2. The RAS prompts for user ID and password (PAP) or challenge (CHAP).
3. User responds with user ID and password (PAP) or challenge response (CHAP).
4. RAS forwards an authentication request packet to the RADIUS server, containing user identification,
encrypted password, and RAS identification.
5. RADIUS server validates the user and sends the RAS an authentication acknowledgement packet contain-
ing user configuration and one of the following
–
Specifying what network services and privileges the RAS should provide to the user (Access-accept), or
–
Denying the Authentication Request (Access-reject).
RADIUS Standards
RADIUS was initially developed in January 1977 by Lucent Technologies on recommendation from the Inter-
net Engineering Task Force (IETF). The second generation IETF Standards for RADIUS (RFC 2138) and
RADIUS Accounting (RFC 2139) were published in April 1977. The second set of RFCs changed the assigned
UDP port number for RADIUS from 1645 (conflicting with “datametrics” service) to 1812, and changed the
assigned UDP port number for RADIUS accounting from 1646 (conflicting with “sa-msg-port” service) to
1813. The April 1977 standards have been widely implemented and remain extensively deployed in public and
private networks.
In June 2000, IETF published a third revision of the RADIUS standards, RFC2865 and RFC2866. RFC 5865
defined congestion control mechanisms to solve performance problems sometimes encountered when the ear-
lier standard is deployed in large-scale networks. RFC2866 defined additional accounting features.
Patton remote access servers (RAS)
support the April 1977 standards for RADIUS (RFC2138) and RADIUS
Accounting (RFC2139). The RADIUS attributes Patton RAS supports are listed in Appendix A of the Access
Server Administrator’s Reference Guide, available online at
http://www.patton.com/manuals/AccessServer_Admin-D_lo-res.pdf
Содержание 3120
Страница 8: ...Contents Model 3120 RAS Administrators Reference Guide 8...
Страница 12: ...About this guide Model 3120 RAS Administrators Reference Guide 12...
Страница 16: ...1 Introduction Model 3120 RAS Administrators Reference Guide 16 Saving HTTP HTML Object Changes...
Страница 21: ...21 Chapter 3 Import Export Chapter contents Introduction 22 Export Configuration 22 Import Configuration 24...
Страница 32: ...4 Alarms Model 3120 RAS Administrators Reference Guide 32 Modify Alarms Configuring alarm severity levels...
Страница 134: ...8 Dial Out Model 3120 RAS Administrators Reference Guide 134 An example section of dialout...
Страница 140: ...9 Callback Access Server Administrators Reference Guide 140 Dialout...
Страница 176: ...13 Filter IP Model 3120 RAS Administrators Reference Guide 176 An example of using a filter...
Страница 178: ...14 Frame Relay Model 3120 RAS Administrators Reference Guide 178 Congestion frameEnableCongestion 184...
Страница 226: ...17 MFR Version 2 Model 3120 RAS Administrators Reference Guide 226 MFR Version 2 Modify...
Страница 238: ...19 SNMP Model 3120 RAS Administrators Reference Guide 238 Out...
Страница 250: ...20 System Model 3120 RAS Administrators Reference Guide 250 System Packet Holding Message Blocks...
Страница 299: ...299 Chapter 24 About Chapter contents Introduction 300 Patton Electronics Company contact information 300...
Страница 304: ...25 License Model 3120 RAS Administrators Reference Guide 304 End User License Agreement...
Страница 309: ...309 Appendix B MIB trees Chapter contents Model 2960 MIB Tree Structure 310...