Access Server Administrators’ Reference Guide

5 • Authentication

 

 

Accounting Port (auAcctPort)

This is the UDP port on the accounting server specified in Acct Address that the access server should use to transfer accounting information. RFC 2139 states that port 1813 is the standard RADIUS accounting port. Some older implementations of RADIUS use port 1646 as the accounting port.

Accounting Enable (auAccountingEnable)

This is a switch that allows the enabling or disabling the reporting of accounting information on the access server. The following options are available:

enableAccounting—Begin accounting of RADIUS authenticated users.

disableAccounting—Disable the accounting feature.

enableAccounting-no validation—When a response is received from either the authentication or the accounting server it is validated using the defined secret. If the secret does not match, the reply packet is dropped just as if it never existed.

Early versions of the Livingston RADIUS server used a method for encoding the accounting reply packet that was incorrect. Accounting replies from these servers would therefore be dropped because they could not be authenticated, eventually resulting in timeouts and shutting the call down with the reason authenAc- countingTimeout. As a workaround for this issue, the state enableAccountingNoValidation—which does not check for valid encoding on the accounting reply packet—was added as an option.

Radius Packet Format (auRadiusPacketFormat)

The following options are available:

fullRfcPacket—The accept request packet includes Calling-Station-Id and Service-Type RADIUS attributes.

minimumRfcPacket—This setting does not include Calling-Station-Id and Service-Type RADIUS attributes.

Radius Session ID Size (auRadiusRunningIdSize)

The session ID—which is sent in the Accounting start and stop packets—can be configured as either an 8 or 12-character string.

The 8-character session ID is formatted as follows (see figure 15 on page 36):

MM—The last two digits of the MAC address

R—The number of times the RAS has rebooted since the last code upload. This rolls over to 0 after 10 reboots

CCCCC—Call ID in hex. The call ID used is the one recorded on the main dial-in screen.

The 12-character session ID is formatted as follows (see figure 16 on page 37):

MMMM—The last four digits of the MAC address

RR—The number of times the RAS has rebooted since the last code upload. This rolls over to 0 after 100 reboots

S—Not used.

CCCCC—Call ID in hex. The call ID used is the one recorded on the main dial-in screen.

Setting Up Authentication

40

Page 40
Image 40
Patton electronic 29XX manual Accounting Port auAcctPort