Specifications
23-19
Managing Access Server Security
RADIUS General Non-Session Attributes
The following table defines the RADIUS general non-session attributes:
Login-Port Indicates the TCP (or LAT) port number to which the user is to
be automatically connected. Used in Access-Accept packets.
Login-LAT-Service Indicates the LAT service name to which the user is to be
automatically connected, via LAT. Used in Access-Accept
packets, when the Login-Service type is LAT.
Login-LAT-Node Indicates the node, within the specified service, to which the
user is to be automatically connected, via LAT. Used in Access-
Accept packets, when the Login-Service type is LAT, and a
Login-LAT-Service is specified.
Login-LAT-Groups Indicates the LAT group codes which the user is authorized to
use. Used in Access-Accept packets, when the Login-Service
type is LAT.
RADIUS
Overhead
Attributes
Definition
NAS-IP-Address IP address of the NAS. Used in Access-Request packets.
NAS-Port NAS Port Number. Used in Access-Request packets.
Reply-Message ASCII text, that the NAS may optionally display. Used in Access-
Accept, Access-Reject, or Access-Challenge packets.
State Opaque data sent from the server to the client in an Access-
Challenge packet, to be sent back to the server by the client in a
new Access-Request packet. Needed to support
challenge/response forms of authentication.
Class Opaque data sent from the server to the client in a Access-Accept
packet, to be sent to the accounting server by the client in a
Accounting-Request packet. Needed to support RADIUS
accounting.
Vendor-Specific Vendor-specific data, prefixed by the assigned vendor OID. Used
in all but Access-Reject packets. Please refer to the following table
for a list of the vendor-specific attributes.
Interactive session
attributes
Definition