Chapter 9 Network Management

Enabling Wireless Network Accounting

Port—The communication port setting used by the access point and the server. The default setting, 1813, is the correct setting for Cisco Aironet access points and Cisco secure ACS.

Shared Secret—Enter the shared secret used by your RADIUS server. The shared secret on the device must match the shared secret on the RADIUS server.

Retran Int (sec.)—Enter the number of seconds the access point should wait before ceasing to contact the server. If the server does not respond within this time, the access point tries to contact the next accounting server in the list if one is specified. The access point uses backup servers in list order when the previous serever times out.

Max Retran—Enter the number of times the access point should attempt to contact the server before giving up. If the server does not respond after these retries, the access point tries to contact the next accounting server in the list if one is specified. The access point uses backup servers in list order when the previous server times out.

Enable Update—Click the Enable Update checkbox to enable accounting update messages for wireless clients. With updates enabled, the access point sends an accounting start message when a wireless client associates to the access point, sends updates at regular intervals while the wireless client is associated to the access point, and sends an accounting stop message when the client disassociates from the access point. With updates disabled, the access point sends only accounting start and accounting stop messages to the server.

Update Delay—Enter the update interval in seconds. If you use 360, the default setting, the access point sends an accounting update message for each associated client device every 6 minutes.

Use accounting server for—Select the authentication types for which you want to collect accounting data. When you select EAP authentication, the access point sends accounting data to the server for client devices that authenticate using Cisco Aironet LEAP, EAP-TLS, or EAP-MD5. When you select non-EAP authentication, the access point sends data to the server for client devices using authentication types other than EAP, such as open, shared key, or MAC-based authentication.

Accounting Attributes

Table 9-1lists the accounting attributes the access point sends to the accounting server

.

Table 9-1 Accounting Attributes the Access Point Sends to the Accounting Server

 

 

 

 

Attribute

Definition

 

 

 

 

 

 

 

 

 

 

 

 

Acct-Status-Type

The client device’s current accounting status; possible statuses include

 

 

 

 

 

 

ACCT_START, ACCT_STOP, and ACCT_UPDATE. The access point sends

 

 

 

 

 

 

an ACCT_START frame to the accounting server when a client device

 

 

 

 

 

 

successfully authenticates on a RADIUS server through the access point; the

 

 

 

 

 

 

access point sends an ACCT_STOP frame to the server when a client device

 

 

 

 

 

 

disassociates from the access point; and the access point sends an

 

 

 

 

 

 

ACCT_UPDATE frame to the server periodically while the authenticated

 

 

 

 

 

 

client device is associated to the access point.

 

 

 

 

 

 

 

 

 

 

 

 

Acct-Session-ID

A unique accounting identifier for each connection activity that is bounded by

 

 

 

 

 

 

ACCT_START and ACCT_STOP. The access point sends this attribute to the

 

 

 

 

 

 

server with all three status types.

 

 

 

 

 

 

 

 

 

 

 

 

User-Name

The username with which the client device’s authenticated to the network. The

 

 

 

 

 

 

access point sends this attribute to the server with all three status types.

 

 

 

 

 

 

 

 

 

 

 

 

NAS-Port

The port number used for the client device’s connection. The access point

 

 

 

 

 

 

sends this attribute to the server with all three status types.

 

 

 

 

 

 

 

 

 

 

 

Cisco Aironet 1200 Series Access Point Software Configuration Guide

 

 

 

 

 

 

9-14

 

 

 

OL-2159-05

 

 

 

 

 

 

Page 214
Image 214
Cisco Systems DL-2159-05 manual Accounting Attributes, Attribute Definition