Configuring Security and Other Services
Using an External AAA Server
Table 18. RADIUS attributes used in Accounting
WLAN Type
802.1X / MAC
Auth
WISPr / Web
Auth / Guest
Access
Attribute
Sent from RADIUS server in Accept messages:
•
(1) User name
•
(25) Class
•
(85) Acct-interim-interval
•
(27) Session-timeout & (29) Termination-action: Session-timeout event
becomes a disconnect event or re-authentication event if termination-
action indicates "(1) radius-request"
For Dynamic VLAN application:
•
(64) Tunnel-Type: value only relevant if it is (13) VLAN
•
(65) Tunnel-Medium-Type: value only relevant if it is (6) 802 (as in all 802
media plus Ethernet)
•
(81) Tunnel-Private-Group-ID: this is the VLAN ID assignment (per RFC,
this is between 1 and 4094)
Common to Start, Interim Update, and Stop messages:
•
(1) User name
•
(2) Password
•
(4) NAS IP address
•
(5) NAS port
•
(8) Framed-IP
•
(30) Called station ID: user configurable
•
(31) Calling station ID
•
(32) NAS Identifier: user configurable
•
(45) Acct authentic
•
(50) Acct-Multi-Session-Id
•
(61) NAS port type
•
(77) Connection Info: indicates client radio type
•
Ruckus private attribute:
•
Vendor ID: 25053
•
Vendor Type / Attribute Number: 3 (Ruckus-SSID)
Additional attributes supported in WISPr WLANs:
•
WISPr vendor specific attributes (vendor id = 14122)
•
(1) WISPr location id
•
(2) WISPr location name
•
(4) WISPr redirection URL
•
(7) WISPr Bandwidth-Max-Up: Maximum transmit rate (bits/second)
•
(8) WISPr Bandwidth-Max-Down: Maximum receive rate (bits/second)
104