Huawei Quidway S3900 Series Operation Manual page 486

Operation Manual – AAA & RADIUS & HWTACACS & EAD
Quidway S3900 Series Ethernet Switches-Release 1510
III. RADIUS packet structure
RADIUS uses UDP to transmit messages. It ensures the correct message exchange
between RADIUS server and client through the following mechanisms: timer
management, retransmission, and backup server. Figure 1-3 depicts the structure of
the RADIUS packets.
Code
Figure 1-3 RADIUS packet structure
1) The Code field decides the type of the RADIUS packet, as shown in Table 1-1.
Table 1-1 Description on major values of the Code field
Code
1
2
3
4
Identifier
Authenticator
Attribute
Packet type
Direction: client->server.
The client transmits this packet to the server to
determine if the user can access the network.
Access-Request
This packet carries user information. It must contain the
User-Name attribute and may contain the following
attributes:
NAS-Port.
Direction: server->client.
The server transmits this packet to the client if all the
Access-Accept
attribute values carried in the Access-Request packet
are acceptable (that is, the user passes the
authentication).
Direction: server->client.
The server transmits this packet to the client if any
Access-Reject
attribute value carried in the Access-Request packet is
unacceptable (that is, the user fails the authentication).
Direction: client->server.
The client transmits this packet to the server to request
the server to start or end the accounting (whether to
Accounting-Req
start or to end the accounting is determined by the
uest
Acct-Status-Type attribute in the packet).
This packet carries almost the same attributes as those
carried in the Access-Request packet.
Huawei Technologies Proprietary
Chapter 1 AAA & RADIUS & HWTACACS
Length
Packet description
NAS-IP-Address,
1-5
Configuration
User-Password and