Independent Submission G. Zorn Request for Comments: 6218 Network Zen Category: Informational T. Zhang ISSN: 2070-1721 Advista Technologies J. Walker Intel Corporation J. Salowey Cisco Systems April 2011 Cisco Vendor-Specific RADIUS Attributes for the Delivery of Keying Material Abstract This document defines a set of vendor-specific RADIUS Attributes designed to allow both the secure
Since then it has been implemented by hundreds other vendors and has a become an Internet Standard RFC. The DIAMETER protocol is the designated successor, but RADIUS is still commonly used today. Protocol dependencies. RFC 2865 Remote Authentication Dial In User Service (RADIUS) RFC 2866 RADIUS Accounting With RADIUS authentication servers, you can now configure the ADC to use the FQDN of the RADIUS server instead of its IP address to authenticate users. Using an FQDN can simplify an otherwise much more complex AAA configuration in environments where the authentication server might be at any of several IP addresses, but always uses a single FQDN. RADIUS VSAs The latest IETF RADIUS standards (RFC 2865 and RFC 2866) specify that you can use RADIUS attribute 26 to communicate vendor-specific information between a RADIUS client (NAS) and a RADIUS server. Attribute 26 is the VSA in RADIUS records. May 14, 2020 · Cisco IOS software supports the RADIUS CoA extensions defined in RFC 5176 that are typically used in a push model to allow the dynamic reconfiguring of sessions from external AAA or policy servers. Per-session CoA requests are supported for session identification, session termination, host reauthentication, port shutdown, and port bounce.
Since then it has been implemented by hundreds other vendors and has a become an Internet Standard RFC. The DIAMETER protocol is the designated successor, but RADIUS is still commonly used today. Protocol dependencies. RFC 2865 Remote Authentication Dial In User Service (RADIUS) RFC 2866 RADIUS Accounting
Configuring an RFC-3576 RADIUS Server . You can configure a RADIUS server to send user disconnect, change-of-authorization (CoA), and session timeout messages as described in RFC 3576, “Dynamic Authorization Extensions to Remote Dial In User Service (RADIUS)”.
RFC Compliance RADIUS Related. RFC 2865 Remote Authentication Dial In User Service (RADIUS) (obsoletes RFC 2138 and RFC 2058) RFC 2866 RADIUS Accounting (obsoletes RFC 2139 and RFC 2059) RFC 2867 RADIUS Accounting Modifications for Tunnel Protocol Support (Updates RFC 2866) RFC 2868 RADIUS Attributes for Tunnel Protocol Support (Updates RFC 2865)
RFC 8044: Data Types in RADIUS