Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Remote Authentication Dial In User Service (RADIUS) (RFC2865)

IP.com Disclosure Number: IPCOM000003465D
Original Publication Date: 2000-Jun-01
Included in the Prior Art Database: 2000-Sep-13

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

C. Rigney: AUTHOR [+4]

Abstract

This document describes a protocol for carrying authentication, authorization, and configuration information between a Network Access Server which desires to authenticate its links and a shared Authentication Server.

This text was extracted from a ASCII document.
This is the abbreviated version, containing approximately 2% of the total text.

Network Working Group C. Rigney

Request for Comments: 2865 S. Willens

Obsoletes: 2138 Livingston

Category: Standards Track A. Rubens

Merit

W. Simpson

Daydreamer

June 2000

Remote Authentication Dial In User Service (RADIUS)

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

Copyright Notice

Copyright (C) The Internet Society (2000). All Rights Reserved.

IESG Note:

This protocol is widely implemented and used. Experience has shown

that it can suffer degraded performance and lost data when used in

large scale systems, in part because it does not include provisions

for congestion control. Readers of this document may find it

beneficial to track the progress of the IETF's AAA working group,

which may develop a successor protocol that better addresses the

scaling and congestion control issues.

Abstract

This document describes a protocol for carrying authentication,

authorization, and configuration information between a Network Access

Server which desires to authenticate its links and a shared

Authentication Server.

Implementation Note

This memo documents the RADIUS protocol. The early deployment of

RADIUS was done using UDP port number 1645, which conflicts with the

"datametrics" service. The officially assigned port number for

RADIUS is 1812.

Table of Contents

1. Introduction .......................................... 3

1.1 Specification of Requirements ................... 4

1.2 Terminology ..................................... 5

2. Operation ............................................. 5

2.1 Challenge/Response .............................. 7

2.2 Interoperation with PAP and CHAP ................ 8

2.3 Proxy ........................................... 8

2.4 Why UDP? ........................................ 11

2.5 Retransmission Hints ....................